Stay organized with collections
Save and categorize content based on your preferences.
Change log for ABNORMAL_SECURITY
Date
Changes
2024-08-21
Enhancement:
- Mapped "event_data.abx_body.severity" to "security_result.severity".
- Mapped "event_data.abx_body.trigger_event" and "event_data.abx_body.entity.entity_type" to "additional.fields".
- Mapped "event_data.abx_body.entity.identifier" to "principal.user.email_addresses".
- Mapped "event_data.abx_body.case_id" to "metadata.product_log_id".
2024-07-24
Enhancement:
- Mapped "sourcetype", "event.folder_locations" to "additional.fields".
- Mapped "event.abx_message_id" to "metadata.product_log_id".
2024-05-02
Enhancement:
- Added support for a new pattern of JSON logs.
