xdr.cynet
- Juan Tomás Alonso Nieto (Deactivated)
Introduction
The tags beginning with xdr.cynet identify events generated by Cynet.Â
Valid tags and data tables
The full tag must have 4 levels. The first two are fixed as xdr.cynet. The third level identifies the type of events sent, and the fourth level indicates the event subtype.Â
Technology | Brand | Type | Subtype |
|---|---|---|---|
xdr | cynet |
|
|
These are the valid tags and corresponding data tables that will receive the parsers' data:
Tag | Data table |
|---|---|
xdr.cynet.alerts.events | xdr.cynet.alerts.events |
xdr.cynet.audit.events | xdr.cynet.audit.events |
xdr.cynet.va.patch_validation | xdr.cynet.va |
xdr.cynet.va.installed_softwares | xdr.cynet.va |
xdr.cynet.va.patches.existing | xdr.cynet.va |
xdr.cynet.va.patches.missing | xdr.cynet.va |
xdr.cynet.va.agents | xdr.cynet.va |
xdr.cynet.va.risky_apps | xdr.cynet.va |
How is the data sent to Devo?
Logs generated by Cynet XDR are forwarded to Devo using a dedicated collector. Contact us if you need to forward these events to your Devo domain so we can guide you through the process.Â