SysmonEvent

Categories

  • セキュリティ

解決策

  • [Security and Audit]

Column Type 説明
アクティビティ string
CallTrace string
CmdLine string
Computer string
ComputerEnvironment string
構成 string
CreationUtcTime DATETIME
CurrentDirectory string
説明 string
DestinationHostname string
DestinationIp string
DestinationIsIpv6 bool
DestinationPort INT
DestinationPortName string
詳細 string
Device string
GrantedAccess string
id string
Image string
ImageLoaded string
Imphash string
開始済み [bool]
IntegrityLevel string
LogonGuid string
LogonId string
MD5Hash string
NewName string
新規スレッドID long
ParentCommandLine string
ParentImage string
ParentProcessGuid string
ParentProcessId string
PipeName string
PreviousCreationUtcTime DATETIME
ProcessGuid string
ProcessID INT
Protocol string
リソース string
ResourceGroup string
ResourceId string
ResourceProvider string
ResourceType string
SchemaVersion string
SHA1Hash string
SHA256Hash string
SignatureStatus string
符号付き string
SignedBy string
SourceHostname string
SourceImage string
SourceIp string
SourceIsIpv6 bool
SourcePort INT
SourcePortName string
SourceProcessGuid string
SourceProcessID INT
SourceSystem string
SourceThreadId long
StartAddress string
StartFunction string
StartModule string
SubscriptionId string
SysmonEventID INT
SysmonEventType string
SysmonState string
TargetFilename string
TargetImage string
TargetObject string
TargetProcessGuid string
TargetProcessID INT
TerminalSessionId INT
TimeGenerated DATETIME
Type string テーブルの名前
User string
バージョン string