Tags¶
1Password¶
API¶
- Abnormal Security
- Absolute
- Agari Phishing Defense
- Akamai - Enterprise Application Access
- Akamai - Enterprise Threat Protection
- Akamai - Event Viewer
- Akamai Security Alerts
- Armorblox
- Asana
- Azure AD
- Microsoft Azure App Registration
- Azure Event Hub
- Azure MDM Intune
- Bitdefender
- Box
- Britive
- Cameyo
- Carbon Black Defense
- Cisco AMP
- Cloudflare
- Code42 Alerts
- Code42 File Events
- Cofense Triage
- Cofense Vision
- CrowdStrike
- CyberArk Endpoint Privilege Manager
- CyberArk Identity
- Cybereason
- Cyberint Threat Intel
- Duo
- FireEye ETP
- FireEye Endpoint Security
- GitHub Audit Logs
- Jira
- JumpCloud Directory Insights
- Lastpass
- LogicMonitor Audit Logs
- Lumen DDoS Hyper
- Mambu
- McAfee Web Gateway
- Menlo Security
- Microsoft Defender for Cloud Apps
- Microsoft Defender for Endpoint
- Microsoft Graph
- Microsoft Office 365 Reports
- Microsoft Office 365
- Mimecast
- Netskope
- Okta
- 1Password
- OpenAI Audit
- Orca
- Proofpoint CASB
- Proofpoint Browser Isolation
- Proofpoint On-Demand
- Proofpoint TAP
- Qualys Solutions
- Rapid7 Insight VM
- Salesforce
- Saviynt
- Shodan
- Signal Sciences Web Application Firewall
- Slack Audit Logs
- Snowflake
- Sophos
- Splunk TruSTAR
- Splunk
- Symantec CASB
- Symantec Email Security
- Symantec Web Security Service
- TAXII Feed
- Tenable Vulnerability Management
- Tessian
- ThreatConnect
- Trend Micro Cloud App Security
- Twilio
- Vectra Protect
- Vercara
- Veza System and Audit Events
- Webex
- Wiz.IO
- Workday
- Workspot Control
- Zoom
- TSI API v2
Abnormal Security¶
Absolute¶
Agari¶
Agari Phishing Defense¶
Akamai¶
- Akamai - Enterprise Application Access
- Akamai - Enterprise Threat Protection
- Akamai - Event Viewer
- Akamai Security Alerts
Amazon Web Services¶
Armorblox¶
Asana¶
Atlassian¶
Audit¶
Auth0¶
Barracuda¶
Bitdefender¶
BlackBerry¶
Blue Prism¶
Box¶
Britive¶
Cameyo¶
Carbon Black¶
ChatGPT¶
Chronicle Direct¶
Cisco¶
- Cisco ACI
- Cisco Firepower eStreamer
- Cisco Meraki
- Cisco AMP
- Cisco ASA
- Cisco Email Security
- Cisco Umbrella
Cloudflare¶
Code42¶
Cofense¶
Corelight¶
Crowdstrike¶
CyberArk¶
Cybereason¶
Cyberint¶
Cylance¶
Duo¶
ETP¶
Email¶
ExtraHop¶
FireEye¶
Fortinet¶
GCS Bucket¶
Generic Collection¶
- AWS S3
- Azure Blob Storage
- Forwarders
- Cloud Storage
- Pub/Sub
- Generic Webhook
- Generic Kafka
- Oracle Cloud Infrastructure Object Storage
- Splunk
GitHub¶
Google Cloud Platform¶
Google Workspace¶
IOC¶
Imperva¶
Infoblox¶
Jira¶
JumpCloud¶
Juniper Networks¶
Kafka¶
Lastpass¶
Layer4¶
LimaCharlie¶
Linux¶
LogicMonitor¶
Lumen¶
Mambu¶
ManageEngine¶
McAfee¶
Menlo¶
Microsoft¶
Microsoft Azure¶
- Azure AD
- Microsoft Azure App Registration
- Azure Blob Storage
- Azure Event Hub
- Azure MDM Intune
- Microsoft Defender for Cloud Apps
- Microsoft Defender for Endpoint
- Microsoft Graph
- Microsoft Office 365 Reports
- Microsoft Office 365
Mimecast¶
NSS¶
Netskope¶
Object Storage¶
Office 365¶
Okta¶
OneLogin¶
OpenAI¶
Oracle Cloud Infrastructure¶
Orca¶
Palo Alto¶
Proofpoint¶
Pulse Secure¶
Qualys¶
Rapid7¶
Records¶
S1¶
S3 Bucket¶
- AWS CloudTrail
- AWS CloudWatch
- AWS Config
- AWS Macie
- AWS Route 53
- AWS VPC Flow
- AWS WAF
- Cisco Umbrella
- CrowdStrike
- Imperva WAF
Sailpoint¶
Salesforce¶
Saviynt¶
SentinelOne¶
Shodan¶
Signal Sciences¶
Slack¶
Snowflake¶
Sophos¶
Splunk¶
Symantec¶
Symantec CASB¶
Syslog¶
- ManageEngine ADSelfService Plus
- Barracuda Email Security
- Blue Prism
- Carbon Black Response
- Cisco ACI
- Cisco Firepower eStreamer
- Cisco Meraki
- Cisco ASA
- Cisco Email Security
- Corelight
- Cylance
- ExtraHop
- FireEye Endpoint Security
- Fortinet FortiGate
- Forwarders
- Infoblox DNS
- Juniper Networks Firewall
- LimaCharlie
- Linux Systems
- McAfee EPO
- Microsoft Windows DHCP
- Microsoft Windows DNS
- Microsoft Windows Event
- Palo Alto Cortex
- Palo Alto Panorama
- pfSense Firewall
- Pulse Secure VPN
- Sailpoint IAM
- SentinelOne
- Symantec Endpoint Protection