Document toolboxDocument toolbox

Operating Systems

Owned by Juan Tomás Alonso Nieto (Unlicensed)
Last updated: Jan 12, 2022
2 min read

This group includes tags that start with the level box. These tags identify data generated by operating systems.

Company Product / service Data tables

macOS X

  • box.macos

Check more info about this parser

Docker container logs 

  • box.docker.stats

Blockchain encabeza el grupo de patentes de IBM - Blockchain Economía

z/OS for IBM mainframes

  • box.zos

IBM i

  • box.as400.audit.type2

Check more info about this parser

logo linux - Blog de Noticias Webup Hosting

go-audit Linux auditing 

  • box.audit.unix.go-audit

Linux kernel firewall - iptables

  • box.iptables

Check more info about this parser


Oracle VMware (ESX) Machine System Logs

This technology is also supported in CEF via syslog.+info

  • box.vmware.esx
  • box.vmware.vcenter

Check more info about these parsers

Unix-like System Logs 

  • box.unix

Check more info about this parser

Windows Event Logs

  • box.win

Check more info about this parser

Windows logs via NXlog

  • box.win_nxlog.application
  • box.win_nxlog.group_policy
  • box.win_nxlog.invalid
  • box.win_nxlog.other
  • box.win_nxlog.powershell
  • box.win_nxlog.print
  • box.win_nxlog.remote_conn
  • box.win_nxlog.security
  • box.win_nxlog.smb
  • box.win_nxlog.sysmon
  • box.win_nxlog.system
  • box.win_nxlog.windows_powershell

Check more info about these parsers

Windows logs via Snare

  • box.win_snare

Check more info about this parser

Windows log via Quest Intrust

  • box.win_intrust
  • box.win_intrust.application
  • box.win_intrust.security
  • box.win_intrust.system
  • box.win_intrust.other
  • box.win_intrust.invalid

Check more info about these parsers