Graylog (GIM) Schema
stable
Contents
Information Model: Entities
Alert Fields
Application Fields
Autonomous System (AS) Sub-Fields
Associated Fields
Container Fields
Destination Fields
Email Fields
Event Fields
File Fields
Geolocation Sub-Fields
GIM Fields
Hash Fields
Host Fields
HTTP Fields
Network Fields
Policy Fields
Process Fields
Query Fields
Rule Fields
Service Fields
Session Fields
Source Fields
Threat Fields
Trace Fields
User Fields
Vendor Fields
Vendor Entities
Palo Alto Fields
Microsoft Windows Fields
Category Map
Graylog Message Categories
Notes:
Graylog Documentation
Graylog Documentation
Graylog Homepage
Graylog
Graylog (GIM) Schema
Docs
»
Information Model: Entities
»
Threat Fields
Edit on GitHub
Threat Fields
¶
Information Around Threats
Threat Fields
¶
Field Name
Example Values
Field Type
Notes
threat_category
malware, trojan
Keyword
threat_detected
true, false
Keyword
Is a threat detected
Read the Docs
v: stable
Versions
stable
development
Downloads
pdf
html
epub
On Read the Docs
Project Home
Builds
Free document hosting provided by
Read the Docs
.