| edocs-app-activity |
opentext-edocs-kv-app-activity-success-permitted |
| egnyte-app-login |
egnyte-e-cef-app-login-success-eventlogin |
| egnyte-failed-app-login |
egnyte-egnyte-sk4-app-login-fail-username |
| egnyte-file-operations |
egnyte-e-cef-file-success-fileactivity |
| elk-cisco-wsa-web-activity |
cisco-securewebapp-str-http-session-accesslog-1 |
| emc-syslog-4624 |
microsoft-evsecurity-kv-endpoint-success-4624-2 |
| emc-syslog-4625 |
microsoft-evsecurity-kv-endpoint-login-fail-4625-1 |
| emc-syslog-4648 |
microsoft-evsecurity-kv-endpoint-login-success-4648-1 |
| emc-syslog-4672 |
microsoft-evsecurity-kv-user-privilege-assign-success-4672-2 |
| emc-syslog-4673 |
microsoft-evsecurity-kv-user-privilege-use-success-4673-1 |
| emc-syslog-4674 |
microsoft-evsecurity-kv-user-privilege-use-success-4674 |
| emc-syslog-4688 |
microsoft-evsecurity-kv-process-create-success-processcreated |
| emc-syslog-4723 |
microsoft-evsecurity-kv-user-password-modify-4723-2 |
| emc-syslog-4740 |
microsoft-evsecurity-kv-user-delete-fail-locked |
| emc-syslog-4768 |
microsoft-evsecurity-kv-endpoint-4768-1 |
| emc-syslog-4769 |
microsoft-evsecurity-kv-endpoint-authentication-sucess-4769-1 |
| emc-syslog-4776 |
microsoft-evsecurity-kv-endpoint-login-success-4776-1 |
| emc-syslog-member-added-2008 |
microsoft-evsecurity-kv-group-member-add-success-47 |
| emp-app-activity |
emp-e-str-app-icall |
| endgame-edr-security-alert |
endgame-edr-json-alert-trigger-success-investigationid |
| ensilo-security-alert |
fortinet-fortiedr-kv-alert-trigger-success-ensilo |
| entrust-identityguard-account-lockout |
entrust-ie-str-user-delete-fail-islocked |
| entrust-identityguard-auth-attempt-2 |
entrust-ie-kv-app-authentication-success-challengerequest |
| entrust-identityguard-auth-attempt-3 |
entrust-ie-str-app-authentication-success-pendingtoken |
| entrust-identityguard-auth-failed-2 |
entrust-ie-kv-endpoint-login-fail-authfail |
| entrust-identityguard-auth-failed-3 |
entrust-ie-kv-endpoint-login-fail-authfailforuser |
| entrust-identityguard-auth-successful |
entrust-ie-kv-endpoint-login-success-sucesssauth |
| entrust-identityguard-failed-login |
entrust-ie-str-app-authentication-fail-failedauthentication |
| entrust-identityguard-login-2 |
entrust-ie-str-app-authentication-success-validated |
| entrust-identityguard-login-3 |
entrust-ie-str-app-authentication-success-apiauthtype |
| entrust-identityguard-login-4 |
entrust-ie-str-app-authentication-success-apiauthenticate |
| entrust-identityguard-login-5 |
entrust-ie-str-app-authentication-success-igradiusapiauthenticate |
| entrust-identityguard-system-events |
entrust-ie-str-app-activity-success-igsystem |
| entrust-identityguard-system-info |
entrust-ie-str-space-delimited-app-authentication-fail-foruser |
| esector-app-login |
esector-defesalogger-json-app-login-success-applogin |
| esector-app-logout |
esector-defesalogger-json-app-logout-success-applogout |
| esector-file-delete |
esector-defesalogger-json-file-delete-success-user |
| esector-file-read |
esector-defesalogger-json-file-read-success-user |
| esector-file-write |
esector-defesalogger-json-file-write-success-user |
| esector-file-write-1 |
esector-defesalogger-json-file-write-success-user-1 |
| esector-file-write-2 |
esector-defesalogger-json-file-write-success-user-2 |
| esector-system-event |
esector-defesalogger-json-app-activity-appactivity |
| eset-alert |
eset-es-cef-alert-trigger-success-eventtype |
| eset-domain-user-failed-login |
eset-es-leef-endpoint-authentication-fail-userlogin |
| eset-domain-user-login |
eset-es-leef-endpoint-authentication-success-userlogin |
| eset-domain-user-logout |
eset-es-leef-app-logout-success-domainuserlogout |
| eset-scan-activity |
symantec-endpointprotection-csv-app-activity-success-user1 |
| eset-system-alert |
eset-es-str-app-notification-lognotificationoccurred |
| eset-system-info |
eset-es-kv-app-notification-occurred |
| estreamer-dns-query |
cisco-fp-kv-dns-request-success-estreamer |
| esxi-remote-logon-failed |
vmware-esxi-str-app-login-fail-invalidcredentials |
| esxi-system-event-1 |
vmware-esxi-str-app-activity-info |
| esxi-system-event-10 |
vmware-esxi-str-endpoint-activity-success-localcli |
| esxi-system-event-11 |
vmware-esxi-str-endpoint-activity-success-configstore |
| esxi-system-event-12 |
vmware-esxi-kv-app-notification-success-esxupdate |
| esxi-system-event-13 |
vmware-esxi-str-app-notification-success-root |
| esxi-system-event-14 |
vmware-esxi-str-endpoint-activity-success-crxcli |
| esxi-system-event-15 |
vmware-esxi-str-endpoint-activity-success-vmwipmi |
| esxi-system-event-16 |
vmware-esxi-str-app-notification-success-nicmgmtd |
| esxi-system-event-17 |
vmware-esxi-str-app-notification-success-sfcbd |
| esxi-system-event-18 |
vmware-esxi-str-endpoint-activity-success-providermanager |
| esxi-system-event-19 |
vmware-esxi-str-endpoint-activity-success-userworldcorrelator |
| esxi-system-event-2 |
vmware-esxi-str-endpoint-activity-vmkernel |
| esxi-system-event-20 |
vmware-esxi-str-app-login-success-vmauthd |
| esxi-system-event-3 |
vmware-esxi-str-app-activity-vsansystem |
| esxi-system-event-4 |
vmware-esxi-str-app-notification-failed |
| esxi-system-event-5 |
vmware-esxi-str-network-session-fail-iofiltervpd |
| esxi-system-event-6 |
vmware-esxi-str-app-notification-vmkwarning |
| esxi-system-event-7 |
vmware-esxi-str-app-notification-vsantraceurgent |
| esxi-system-event-8 |
vmware-esxi-str-app-activity-vsand |
| esxi-system-event-9 |
vmware-esxi-str-endpoint-delete-removedvm |
| event-carbonblack-process-end |
vmware-carbonblackappctrl-json-process-close-success-deviceexternalip |
| eventtracker-4611 |
microsoft-evsecurity-json-endpoint-notification-success-4611 |
| evntslog-528 |
microsoft-evsecurity-kv-endpoint-success-528 |
| evntslog-672 |
microsoft-evsecurity-str-endpoint-672 |
| evntslog-673 |
microsoft-evsecurity-kv-endpoint-authentication-success-673 |
| evntslog-675 |
microsoft-evsecurity-kv-endpoint-login-fail-675-1 |
| evntslog-680 |
microsoft-evsecurity-kv-endpoint-login-680-1 |
| evntslog-member-added-2003 |
microsoft-evsecurity-kv-group-member-add-success-securityenabled-1 |
| exa-app-activity-1 |
exabeam-search-json-app-activity-success-groupmodified |
| exa-app-activity-2 |
exabeam-search-json-app-activity-success-role |
| exa-app-activity-3 |
exabeam-search-json-app-activity-success-rule |
| exa-app-activity-4 |
exabeam-search-json-app-activity-success-search |
| exa-app-activity-5 |
exabeam-search-json-app-activity-success-permissionchange |
| exa-app-activity-6 |
exabeam-search-json-app-activity-success-restarting |
| exa-app-activity-7 |
exabeam-search-json-app-activity-success-addededited |
| exa-app-activity-aa |
exabeam-aa-json-app-activity-success-search |
| exa-app-login |
exabeam-search-json-app-login-success-activitylogin |
| exa-app-login-aa |
exabeam-aa-json-app-login-success-applogin |
| exa-app-logout |
exabeam-search-json-app-logout-loggedout |
| exa-cor-rule-alerts |
exabeam-search-kv-alert-trigger-success-rulealerts |
| exa-dl-search-activity |
exabeam-search-json-app-activity-success-searchquery |
| exa-failed-app-login |
exabeam-aa-json-app-login-fail-failedlogin |
| exa-log-source-added |
exabeam-search-json-app-activity-success-logsourceadded |
| exa-syslog-nac-logon-1 |
ruckus-r-str-endpoint-login-success-user |
| exa-syslog-nac-logon-2 |
ruckus-r-str-endpoint-login-success-rejoinswlan |
| exa-syslog-nac-logon-3 |
ruckus-r-str-endpoint-login-success-roamsfrom |
| exa-syslog-nac-logon-4 |
ruckus-r-str-endpoint-login-success-roamsout |
| exa-syslog-network-connection-stop-1 |
ruckus-r-str-network-close-success-disconnects |
| exa-syslog-network-connection-stop-2 |
ruckus-r-str-network-close-success-leave |
| exa-syslog-network-info |
ruckus-r-kv-app-activity-success-filecatchsync |
| exa-system-info |
exabeam-search-kv-app-notification-trigger |
| exabeam-analytics-health-alert |
exabeam-search-kv-app-notification-health |
| exabeam-analytics-health-check |
exabeam-search-json-app-notification-servicecheck |
| exabeam-cm-rsyslog |
exabeam-aa-json-app-notification-queue |
| exabeam-session-info |
exabeam-search-kv-alert-trigger-success-alertscount |
| exabeam-syslog-notification |
exabeam-aa-kv-alert-trigger-exaanalyticsmaster |
| exabeam-system-health-alert-1 |
exabeam-search-kv-app-notification-serverhealth |
| exabeam-system-health-alert-2 |
exabeam-search-json-app-notification-webcommon |
| exalms-4625 |
microsoft-evsecurity-json-endpoint-login-fail-4625-1 |
| exalms-4662 |
microsoft-evsecurity-json-ds-object-activity-success-4662-2 |
| exalms-4663 |
microsoft-evsecurity-json-file-success-timestamp |
| exalms-4674 |
microsoft-evsecurity-json-user-privilege-use-success-4674-1 |
| exalms-4719 |
microsoft-evsecurity-json-audit-policy-modify-success-4719-1 |
| exalms-4742 |
microsoft-evsecurity-json-ds-object-modify-success-4742 |
| exalms-4776 |
microsoft-evsecurity-json-endpoint-login-4776-1 |
| exalms-540 |
microsoft-evsecurity-json-endpoint-login-success-540 |
| exalms-552 |
microsoft-evsecurity-kv-endpoint-login-success-552-1 |
| exalms-567 |
microsoft-evsecurity-json-file-success-567-1 |
| exalms-576 |
microsoft-evsecurity-json-user-privilege-assign-success-576 |
| exalms-680 |
microsoft-evsecurity-json-endpoint-login-fail-680 |
| exalms-sqlserver-failed-login |
microsoft-mssql-json-app-login-fail-loginfailedforuser |
| exalms-sqlserver-failed-login-1 |
microsoft-mssql-json-app-login-fail-loginfailedforuser-1 |
| exalms-sqlserver-system-info-1 |
microsoft-mssql-json-network-traffic-success-17832 |
| exchange-app-activity |
microsoft-exchange-kv-app-activity-success-list |
| exchange-app-activity-1 |
microsoft-exchange-kv-email-delete-success-exchangeserver |
| exchange-app-activity-2 |
microsoft-exchange-kv-email-read-success-exchangeserver |
| exchange-app-login |
microsoft-exchange-kv-app-login-success-serverexchange |
| exchange-app-login-1 |
microsoft-exchange-csv-app-authentication-success-server |
| exchange-authentication-failed |
microsoft-exchange-str-app-authentication-fail-auth |
| exchange-authentication-successful |
microsoft-exchange-kv-app-authentication-success-exserver |
| exchange-dlp-alert |
microsoft-exchange-csv-alert-trigger-success-filteredasspam |
| exchange-dlp-alert-1 |
microsoft-exchange-csv-alert-trigger-success-quarantined |
| exchange-dlp-email-alert-1 |
microsoft-exchange-csv-email-send-receive-delivered |
| exchange-dlp-email-alert-10 |
microsoft-exchange-csv-app-notification-routingtransfer |
| exchange-dlp-email-alert-11 |
microsoft-exchange-csv-alert-trigger-dsnbadmail |
| exchange-dlp-email-alert-12 |
microsoft-exchange-csv-app-notification-routingexpand |
| exchange-dlp-email-alert-13 |
microsoft-exchange-csv-app-notification-transfer |
| exchange-dlp-email-alert-14 |
microsoft-exchange-csv-app-notification-routingdrop |
| exchange-dlp-email-alert-15 |
microsoft-exchange-csv-app-notification-dsn |
| exchange-dlp-email-alert-16 |
microsoft-exchange-csv-app-notification-redirecting |
| exchange-dlp-email-alert-17 |
microsoft-exchange-csv-app-notification-hadiscard |
| exchange-dlp-email-alert-18 |
microsoft-exchange-csv-email-receive-smtphareceive |
| exchange-dlp-email-alert-19 |
microsoft-exchange-csv-app-notification-agentinfo |
| exchange-dlp-email-alert-2 |
microsoft-exchange-csv-email-send-receive-expanded |
| exchange-dlp-email-alert-20 |
microsoft-exchange-csv-app-notification-success-storedriver |
| exchange-dlp-email-alert-21 |
microsoft-exchange-csv-app-notification-processmeetingmessage |
| exchange-dlp-email-alert-22 |
microsoft-exchange-csv-app-notification-agentresubmit |
| exchange-dlp-email-alert-23 |
microsoft-exchange-csv-app-notification-smtpdefer |
| exchange-dlp-email-alert-24 |
microsoft-exchange-csv-app-notification-smtpharedirectfail |
| exchange-dlp-email-alert-25 |
microsoft-exchange-csv-app-notification-routingduplicateredirect |
| exchange-dlp-email-alert-26 |
microsoft-exchange-csv-app-notification-success-queueresubmit |
| exchange-dlp-email-alert-27 |
microsoft-exchange-csv-app-notification-agentdefer |
| exchange-dlp-email-alert-28 |
microsoft-exchange-csv-app-notification-success-queuetransfer |
| exchange-dlp-email-alert-29 |
microsoft-exchange-csv-app-notification-success-safetynetresubmit |
| exchange-dlp-email-alert-3 |
microsoft-x-csv-email-failed |
| exchange-dlp-email-alert-30 |
microsoft-exchange-csv-app-notification-success-smtpfail |
| exchange-dlp-email-alert-4 |
microsoft-exchange-csv-email-receive-smtpreceive |
| exchange-dlp-email-alert-5 |
microsoft-exchange-csv-app-notification-smtpharedirect |
| exchange-dlp-email-alert-6 |
microsoft-exchange-csv-email-send-success-smtpsend |
| exchange-dlp-email-alert-7 |
microsoft-exchange-csv-app-notification-success-routingsuppressed |
| exchange-dlp-email-alert-8 |
microsoft-exchange-csv-app-notification-routing |
| exchange-dlp-email-alert-9 |
microsoft-exchange-csv-email-receive-agentreceive |
| exchange-dlp-email-alert-resolved |
microsoft-x-csv-email-resolved |
| exchange-dlp-email-in |
microsoft-x-csv-email-deliver |
| exchange-dlp-email-in-1 |
microsoft-exchange-str-email-receive-success-inbound |
| exchange-dlp-email-in-2 |
microsoft-x-csv-email-receive-success-incoming |
| exchange-dlp-email-in-3 |
microsoft-x-kv-email-receive-success-smtp |
| exchange-dlp-email-in-failed |
microsoft-x-csv-email-receive-failed |
| exchange-dlp-email-in-sd |
microsoft-exchange-csv-email-receive-success-deliver |
| exchange-dlp-email-internal |
microsoft-exchange-str-email-success-internal |
| exchange-dlp-email-out |
microsoft-x-csv-email-received |
| exchange-dlp-email-out-1 |
microsoft-exchange-str-email-send-success-outbound |
| exchange-dlp-email-out-2 |
microsoft-x-kv-email-send-success-catrs |
| exchange-dlp-email-out-3 |
microsoft-x-csv-email-send-success-mailboxrule |
| exchange-dlp-email-out-4 |
microsoft-x-csv-email-send-success-routing |
| exchange-dlp-email-out-failed |
microsoft-x-csv-email-send-failed |
| exchange-dlp-email-out-sd |
microsoft-exchange-csv-email-send-success-receive |
| exchange-failed-app-login |
microsoft-exchange-kv-app-login-fail-imap4 |
| extrahop-4768 |
microsoft-evsecurity-json-endpoint-4768-2 |
| extrahop-4769 |
microsoft-evsecurity-json-endpoint-login-4769-7 |
| extrahop-4770 |
microsoft-evsecurity-json-endpoint-login-4770 |
| extrahop-4771 |
microsoft-evsecurity-json-endpoint-login-fail-4771-4 |
| extrahop-dns-query |
extrahop-revealx-json-dns-request-success-dnsquery |
| extrahop-network-perf |
extrahop-revealx-json-alert-trigger-success-dnsnames |
| extrahop-network-sec |
extrahop-revealx-json-alert-trigger-success-sec |