Change log for AVANAN_EMAIL

Date	Changes
2022-07-12	Enhancement: - Mapped "id" to "metadata.product_log_id". - Mapped "description" to "metadata.description". - Mapped "entity_link" to "principal.process.file.full_path". - Mapped "user_id" to "principal.user.userid". - Mapped "Size" to "target.file.size". - Mapped "severity" to "security_result.severity". - Mapped "matched_security_tool" to "additional.fields". - Mapped "customer_domain" to "additional.fields". - Mapped "current_state" to "additional.fields". - Mapped "policy_rule_id" to "security_result.rule_id". - Mapped "Body_ContentType" to "security_result.detection_fields". - Mapped "aggregation_id" to "security_result.detection_fields". - Mapped "entity_source" to "security_result.detection_fields". - Mapped "av_mail_hash" to "security_result.detection_fields". - Mapped "entity_type" to "security_result.detection_fields". - Mapped "InternetMessageIdHash" to "security_result.detection_fields". - Mapped "recipients_hash" to "target.process.file.sha256". - Mapped "From" to "target.process.product_specific_process_id". - Added for loop for "recipients". - Added for loop for "recipient_emails". - Mapped "av_file_hash_md5" to "principal.process.file.md5". - Mapped "av_file_hash_sha256" to "principal.process.file.sha256". - Mapped "av_file_hash_sha1" to "principal.process.file.sha1". - Mapped "av_file_mime" to "principal.process.file.mime_type".

Date

Changes

2022-07-12

Enhancement:
- Mapped "id" to "metadata.product_log_id".
- Mapped "description" to "metadata.description".
- Mapped "entity_link" to "principal.process.file.full_path".
- Mapped "user_id" to "principal.user.userid".
- Mapped "Size" to "target.file.size".
- Mapped "severity" to "security_result.severity".
- Mapped "matched_security_tool" to "additional.fields".
- Mapped "customer_domain" to "additional.fields".
- Mapped "current_state" to "additional.fields".
- Mapped "policy_rule_id" to "security_result.rule_id".
- Mapped "Body_ContentType" to "security_result.detection_fields".
- Mapped "aggregation_id" to "security_result.detection_fields".
- Mapped "entity_source" to "security_result.detection_fields".
- Mapped "av_mail_hash" to "security_result.detection_fields".
- Mapped "entity_type" to "security_result.detection_fields".
- Mapped "InternetMessageIdHash" to "security_result.detection_fields".
- Mapped "recipients_hash" to "target.process.file.sha256".
- Mapped "From" to "target.process.product_specific_process_id".
- Added for loop for "recipients".
- Added for loop for "recipient_emails".
- Mapped "av_file_hash_md5" to "principal.process.file.md5".
- Mapped "av_file_hash_sha256" to "principal.process.file.sha256".
- Mapped "av_file_hash_sha1" to "principal.process.file.sha1".
- Mapped "av_file_mime" to "principal.process.file.mime_type".