Parsers and Generated Fields
Tag Fields Created by Parser asec-json
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser asec-json
| Source Field | LogScale Repository Field |
|---|---|
| source.address | client.address |
| source.ip | client.ip |
| Vendor.geo.country | code |
| Vendor.httpMessage.status | code |
| Vendor.httpMessage.requestId | event.id |
| Vendor.httpMessage.requestId | http.request.id |
| Vendor.httpMessage.method | http.request.method |
| Vendor.httpMessage.bytes | http.response.bytes |
| Vendor.geo.city | name |
| Vendor.attackData.clientIP | source.address |
| source.address | source.ip |
| Vendor.httpMessage.path | url.path |
| Vendor.httpMessage.port | url.port |
| Vendor.httpMessage.query | url.query |