Parsers and Generated Fields
Tag Fields Created by Parser asimily-iomt
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser asimily-iomt
| Vendor Field | CPS Field | Description |
|---|---|---|
| `event.category[]` | Array | None |
| `event.type[]` | Array | None |
| `host.ip[]` | Array | Vendor.ipAddress |
| `device.manufacturer` | Copied | Vendor.manufacturer |
| `device.model.identifier` | Copied | Vendor.deviceModel |
| `event.id` | Copied | Vendor.alertId |
| `event.reason` | Copied | Vendor.context |
| `host.os.name` | Copied | Vendor.os |
| `@timestamp` | Parsed | Vendor.dateTime |
| `ecs.version` | Static | None |
| `event.kind` | Static | None |
| `event.module` | Static | None |
| `host.mac[0]` | Transformed | Vendor.macAddress |
| Vendor.manufacturer | device.manufacturer | |
| Vendor.deviceModel | device.model.identifier | |
| Vendor.alertId | event.id | |
| Vendor.context | event.reason | |
| Vendor.os | host.os.name |