Operating Systems

This group includes tags that start with the level box. These tags identify data generated by operating systems.

Company	Product / service	Valid tags
	macOS X	`box.macos` ^+info
	Docker container logs	`box.docker.stats`
	z/OS for IBM mainframes	`box.zos`
	IBM i	`box.as400.audit.type2` ^+info
	go-audit Linux auditing	`box.audit.unix.go-audit`
	Linux kernel firewall - iptables	`box.iptables` ^+info
	Oracle VMware (ESX) Machine System Logs This technology is also supported in CEF via syslog.^+info	`box.vmware.esx` ^+info `box.vmware.vcenter` ^+info
	Unix-like System Logs	`box.unix` ^+info
	Windows Event Logs	`box.win` ^+info
	Windows logs via NXlog	`box.win_nxlog.application` ^+info `box.win_nxlog.group_policy` ^+info `box.win_nxlog.invalid` ^+info `box.win_nxlog.other` ^+info `box.win_nxlog.powershell` ^+info `box.win_nxlog.print` ^+info `box.win_nxlog.remote_conn` ^+info `box.win_nxlog.security` ^+info `box.win_nxlog.smb` ^+info `box.win_nxlog.sysmon` ^+info `box.win_nxlog.system` ^+info `box.win_nxlog.windows_powershell` ^+info
	Windows logs via Snare	`box.win_snare` ^+info
	Windows log via Quest Intrust	`box.win_intrust` ^+info `box.win_intrust.application` ^+info `box.win_intrust.security` ^+info `box.win_intrust.system` ^+info `box.win_intrust.other` ^+info `box.win_intrust.invalid` ^+info