Stay organized with collections
Save and categorize content based on your preferences.
Change log for TRENDMICRO_DDI
Date
Changes
2025-05-19
Enhancement:
- Added a GROK pattern for field `rt`.
- Updated rename to replace directive to map the value of dtz into timezone.
2025-04-08
Enhancement:
- event.idm.readonly_udm.metadata.event_timestamp: Newly mapped "rt" raw log field with "event.idm.read_only_udm.metadata.event_timestamp" UDM field.
2025-01-09
Enhancement:
- Added a null check for "dvcmac" to parse unparsed logs.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-09 UTC."],[[["\u003cp\u003eA new parser for TRENDMICRO_DDI was created on November 8, 2024.\u003c/p\u003e\n"],["\u003cp\u003eAn enhancement was made on January 9, 2025, to include a null check for "dvcmac" when parsing unparsed logs.\u003c/p\u003e\n"]]],[],null,["Change log for TRENDMICRO_DDI\n\n| Date | Changes |\n|------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------|\n| 2025-05-19 | Enhancement: - Added a GROK pattern for field \\`rt\\`. - Updated rename to replace directive to map the value of dtz into timezone. |\n| 2025-04-08 | Enhancement: - event.idm.readonly_udm.metadata.event_timestamp: Newly mapped \"rt\" raw log field with \"event.idm.read_only_udm.metadata.event_timestamp\" UDM field. |\n| 2025-01-09 | Enhancement: - Added a null check for \"dvcmac\" to parse unparsed logs. |\n| 2024-11-08 | - Newly created parser. |"]]
