Tags¶
1Password¶
API¶
- Abnormal Security
- Absolute
- Agari Phishing Defense
- Akamai - Enterprise Application Access
- Akamai - Enterprise Threat Protection
- Akamai Security Alerts
- Armorblox
- Asana
- Azure AD
- Microsoft Azure App Registration
- Azure Event Hub
- Azure MDM Intune
- Bitdefender
- Box
- Britive
- Cameyo
- Carbon Black Defense
- Cisco AMP
- Cloudflare
- Code42 Alerts
- Code42 File Events
- Cofense Triage
- CrowdStrike
- CyberArk Endpoint Privilege Manager
- CyberArk Identity
- Cybereason
- Cyberint Threat Intel
- Duo
- FireEye ETP
- FireEye Endpoint Security
- Jira
- JumpCloud Directory Insights
- Lastpass
- LogicMonitor Audit Logs
- Lumen DDoS Hyper
- Mambu
- McAfee Web Gateway
- Menlo Security
- Microsoft Defender for Cloud Apps
- Microsoft Defender for Endpoint
- Microsoft Graph
- Microsoft Office 365 Reports
- Microsoft Office 365
- Mimecast
- Netskope
- Okta
- 1Password
- Orca
- Proofpoint CASB
- Proofpoint Browser Isolation
- Proofpoint On-Demand
- Proofpoint TAP
- Qualys Solutions
- Rapid7 Insight VM
- Salesforce
- Saviynt
- Shodan
- Signal Sciences Web Application Firewall
- Slack Audit Logs
- Snowflake
- Sophos
- Splunk TruSTAR
- Splunk
- Symantec Email Security
- Symantec Web Security Service
- TAXII Feed
- Tenable Vulnerability Management
- Tessian
- ThreatConnect
- Trend Micro Cloud App Security
- Twilio
- Vectra Protect
- Wiz.IO
- Workday
- Workspot Control
- Zoom
- TSI API v2
Abnormal Security¶
Absolute¶
Agari¶
Agari Phishing Defense¶
Akamai¶
Amazon Web Services¶
Armorblox¶
Asana¶
Atlassian¶
Audit¶
Auth0¶
Barracuda¶
Bitdefender¶
BlackBerry¶
Blue Prism¶
Box¶
Britive¶
Cameyo¶
Carbon Black¶
Chronicle Direct¶
Cisco¶
- Cisco ACI
- Cisco Firepower eStreamer
- Cisco Meraki
- Cisco AMP
- Cisco ASA
- Cisco Email Security
- Cisco Umbrella
Cloudflare¶
Code42¶
Cofense¶
Corelight¶
Crowdstrike¶
CyberArk¶
Cybereason¶
Cyberint¶
Cylance¶
Duo¶
ETP¶
Email¶
ExtraHop¶
FireEye¶
Fortinet¶
GCS Bucket¶
Generic Collection¶
- AWS S3
- Azure Blob Storage
- Forwarders
- Cloud Storage
- Pub/Sub
- Generic Webhook
- Generic Kafka
- Oracle Cloud Infrastructure Object Storage
- Splunk
GitHub¶
Google Cloud Platform¶
Google Workspace¶
IOC¶
Imperva¶
Infoblox¶
Jira¶
JumpCloud¶
Juniper Networks¶
Kafka¶
Lastpass¶
Layer4¶
LimaCharlie¶
Linux¶
LogicMonitor¶
Lumen¶
Mambu¶
ManageEngine¶
McAfee¶
Menlo¶
Microsoft¶
Microsoft Azure¶
- Azure AD
- Microsoft Azure App Registration
- Azure Blob Storage
- Azure Event Hub
- Azure MDM Intune
- Microsoft Defender for Cloud Apps
- Microsoft Defender for Endpoint
- Microsoft Graph
- Microsoft Office 365 Reports
- Microsoft Office 365
Mimecast¶
NSS¶
Netskope¶
Object Storage¶
Office 365¶
Okta¶
OneLogin¶
Oracle Cloud Infrastructure¶
Orca¶
Palo Alto¶
Proofpoint¶
Pulse Secure¶
Qualys¶
Rapid7¶
Records¶
S1¶
S3 Bucket¶
- AWS CloudTrail
- AWS CloudWatch
- AWS Config
- AWS Macie
- AWS Route 53
- AWS VPC Flow
- AWS WAF
- Cisco Umbrella
- CrowdStrike
- Imperva WAF
Sailpoint¶
Salesforce¶
Saviynt¶
SentinelOne¶
Shodan¶
Signal Sciences¶
Slack¶
Snowflake¶
Sophos¶
Splunk¶
Symantec¶
Syslog¶
- ManageEngine ADSelfService Plus
- Barracuda Email Security
- Blue Prism
- Carbon Black Response
- Cisco ACI
- Cisco Firepower eStreamer
- Cisco Meraki
- Cisco ASA
- Cisco Email Security
- Corelight
- Cylance
- ExtraHop
- FireEye Endpoint Security
- Fortinet FortiGate
- Forwarders
- Infoblox DNS
- Juniper Networks Firewall
- LimaCharlie
- Linux Systems
- McAfee EPO
- Microsoft Windows DHCP
- Microsoft Windows DNS
- Microsoft Windows Event
- Palo Alto Cortex
- Palo Alto Panorama
- pfSense Firewall
- Pulse Secure VPN
- Sailpoint IAM
- SentinelOne
- Symantec Endpoint Protection