| Cloud |
|
|
|
|
|
AWSCloudTrail |
Tag:"AWSCloudTrail" |
Syslog |
|
|
Office365 Exchange |
Tag:"Office365" |
CQApi |
|
|
Office365 SharePoint |
Tag:"Office365" |
CQApi |
|
|
Office365 AzureActiveDirectory |
Tag:"Office365" |
CQApi |
|
|
Change Auditor for Azure AD |
Tag:"ChangeAuditorAzureActiveDirectory" |
Applications |
|
|
cloudera_HDFS_AUDIT |
Tag:"cloudera_HDFS_AUDIT" |
Applications |
|
|
cloudera_HBASE_AUDIT |
Tag:"cloudera_HBASE_AUDIT" |
Applications |
|
|
cloudera_HIVE_AUDIT |
Tag:"cloudera_HIVE_AUDIT" |
Applications |
|
|
cloudera_HUE_AUDIT |
Tag:"cloudera_HUE_AUDIT" |
Applications |
|
|
cloudera_NAVMS_AUDIT |
Tag:"cloudera_NAVMS_AUDIT" |
Applications |
|
|
cloudera_SENTRY_AUDIT |
Tag:"cloudera_SENTRY_AUDIT" |
Applications |
|
|
cloudera_SOLR_AUDIT |
Tag:"cloudera_SOLR_AUDIT" |
Applications |
|
|
cloudera_IMPALA_AUDIT |
Tag:"cloudera_IMPALA_AUDIT" |
Applications |
|
|
Cloud GravityZone |
Tag:"CloudGravityZone" |
Syslog |
|
| On Prem Antimalware |
|
|
|
|
|
BDGravityZone |
Tag:"BDGravityZone" |
Syslog |
Bitdefender Gravity Zone |
|
McAfeeSplit |
Tag:"McAfeeSplit" |
Syslog |
|
|
SymantecServer |
Tag:"CQSymantecServer" |
Syslog |
|
|
EsetAntivirus |
Tag:"EsetAntivirus" |
Syslog |
|
|
ESET PROTECT Center |
Tag:"EsetProtectCenter" |
Syslog |
|
| On prem Application servers |
|
|
|
|
|
Veeam Agent |
Tag:"WindowsVeeamAgent" |
WindowsOs |
|
|
Microsoft-IIS-Logging/Logs |
Tag:"WindowsIISEventLog" |
WindowsOs |
|
|
WSO2 |
Tag:"CQwso2is" |
Syslog |
WSO2 |
|
IBM-SAN |
Tag:"IBM-SAN" |
Syslog |
|
|
SynologyFTP-NAS |
Tag:"SynologyFTP-NAS" |
Syslog |
|
|
Dovecot |
Tag:"CQdovecot" |
Syslog |
|
|
MailPostfix |
Tag:"MailPostfix" |
Syslog |
|
|
ApacheDatasource |
Tag:"ApacheDatasource" |
Syslog |
Apache |
|
Qnap |
Tag:"Qnap" |
Syslog |
|
|
DMSPortalMapEventType |
Tag:"DMSPortalMapEventType" |
Syslog |
|
|
ITrustSysLog |
Tag:"ITrustSysLog" |
Syslog |
|
|
KiwiSyslog |
Tag:"KiwiSyslog" |
Syslog |
|
|
ElasticSearchSyslog |
Tag:"ElasticSearchSyslog" |
Syslog |
|
|
MSExchange |
Tag:"MSExchange" |
Syslog |
|
|
GitLabRails |
Tag:"GitLabRails" |
Syslog |
|
|
GitLabShell |
Tag:"GitLabShell" |
Syslog |
|
|
InsoftAuditLog |
Tag:"InsoftAuditLog" |
Syslog |
|
|
DMSPortalMap |
Tag:"DMSPortalMap" |
Syslog |
|
|
DMSPortalApplication |
Tag:"DMSPortalApplication" |
Syslog |
|
|
DMSPortalMapEventType |
Tag:"DMSPortalMapEventType" |
Syslog |
|
|
nginx_combined |
Tag:"CQnginx_combined" |
Syslog |
|
|
apache_combined |
Tag:"CQapache_combined" |
Syslog |
|
|
InTrust for AD |
Tag:"ChangeAuditorInTrustActiveDirectory" |
Applications |
|
|
Elasticsearch |
Tag:"GenericElasticSearch" |
CQApi |
|
|
LogStash |
Tag:"LogStash" |
CQApi |
|
|
CQHttpServer |
Tag:"CQHttpServer" |
CQApi |
|
|
Generic CQ API |
Tag:"GenericCQApi" |
CQApi |
|
|
DekeneasOrangeRo |
Tag:"DekeneasOrangeRo" |
CQApi |
|
|
Generic Files |
Tag:"GenericFile" |
Applications |
|
|
Generic CSV Files |
Tag:"GenericCSVFile" |
Applications |
CSVFile |
|
Exchange TrackingSource Files |
Tag:"ExchangeMessageTracking" |
Applications |
|
|
Microsoft Exchange Message Tracking |
Tag:"MSExchnangeParser" |
Syslog |
|
|
SendMail Mail Daemon |
Tag:"CQsm-msp-queue" |
Syslog |
|
|
CEF Formatted events (Common Event Format |
Tag:"CQCEF" |
Syslog |
|
|
Subversion Mail |
Tag:"CQsvn" |
Syslog |
|
|
Postfix local mail delivery |
Tag:"CQpostfix/local" |
Syslog |
|
|
Amavis mail service |
Tag:"CQamavis" |
Syslog |
|
|
Named DNS service |
Tag:"CQnamed" |
Syslog |
|
|
Postfix session count and request rate control |
Tag:"CQpostfix/anvil" |
Syslog |
|
|
PostFix Mail Cleanup Daemon |
Tag:"CQpostfix/cleanup" |
Syslog |
|
|
PostFix error/retry mail delivery agent |
Tag:"CQpostfix/error" |
Syslog |
|
|
PostFix LMTP client |
Tag:"CQpostfix/lmtp" |
Syslog |
|
|
PostFix local mail pickup |
Tag:"CQpostfix/pickup" |
Syslog |
|
|
PostFix delivery to external command |
Tag:"CQpostfix/pipe" |
Syslog |
|
|
Postfix queue manager |
Tag:"CQpostfix/qmgr" |
Syslog |
|
|
Postfix shared connection cache server |
Tag:"CQpostfix/scache" |
Syslog |
|
|
Postfix SMTP client |
Tag:"CQpostfix/smtp" |
Syslog |
|
|
Postfix SMTP server |
Tag:"CQpostfix/smtpd" |
Syslog |
|
|
Postfix Secure SMTP server |
Tag:"CQpostfix/smtps/smtpd" |
Syslog |
|
|
Postfix delivery status reports |
Tag:"CQpostfix/bounce" |
Syslog |
|
|
Pure FTPd Service |
Tag:"CQpure-ftpd" |
Syslog |
|
|
Quest Change Auditor Exchange Logs |
Tag:"QuestChangeAuditorExchange" |
Syslog |
|
|
Quest Change Auditor Active Directory Audit log |
Tag:"QuestChangeAuditorAD" |
Syslog |
|
|
Cisco Prime |
Tag:"CiscoPrime" |
Syslog |
|
|
InTrust Syslog |
Tag:"InTrustSysLog" |
Syslog |
|
|
VmWare VCSA |
Tag:"VmWareVCSAParser" |
Syslog |
VmWare VCSA |
|
Ngnix Error Log |
Tag:"CQnginx-error" |
Syslog |
|
|
SSH SFTP server |
Tag:"CQsftp-server" |
Syslog |
|
|
Documenta audit log |
Tag:"DocumentaA$AUDIT" |
Syslog |
|
|
DocumentaLog |
Tag:"DocumentaLog" |
Syslog |
|
|
Dynamic Host Configuration Protocol Server |
Tag:"Dhcpd" |
Syslog |
|
|
LXD system container and virtual machine manager logs |
Tag:"CQlxd.activate" |
Syslog |
|
| On prem Applications |
|
|
|
|
|
VMware ESXI Vpxa |
Tag:"CQVpxa" |
Syslog |
|
|
VMware ESXI Hostd |
Tag:"CQHostd" |
Syslog |
|
|
VMware ESXI Smaill-Footprint CIM Broker (SFCB) Intelligent Platform Management Interface (IPMI) |
Tag:"CQsfcb-vmw_ipmi" |
Syslog |
|
|
VMware ESXI HTTP Reverse Proxy |
Tag:"CQRhttpproxy" |
Syslog |
|
|
VMware ESXI HTTP Kernel Syslogs |
Tag:"CQvmkernel" |
Syslog |
|
|
VMware ESXi Hostd Probe |
Tag:"CQhostd-probe" |
Syslog |
|
|
VMware ESXi Storage Resource Manager |
Tag:"CQstorageRM" |
Syslog |
|
|
VMware ESXi Storage DRS Injector |
Tag:"CQsdrsInjector" |
Syslog |
|
|
VMware ESXi Kernel Warnings |
Tag:"CQvmkwarning" |
Syslog |
|
|
VMware ESXi Auth Daemon Syslogs |
Tag:"CQvmauthd" |
Syslog |
|
|
VMware ESXi Cron Daemon Syslogs |
Tag:"CQcrond" |
Syslog |
|
|
VMware ESXi Backup Syslogs |
Tag:"CQbackup" |
Syslog |
|
|
VMware ESXi Shell Syslogs |
Tag:"CQshell" |
Syslog |
|
|
VMware ESXi Heartbeat Syslogs |
Tag:"CQheartbeat" |
Syslog |
|
|
VMware ESXi Usb arbitrator |
Tag:"CQusbarb" |
Syslog |
|
|
VMware ESXi Tmpwatch |
Tag:"CQtmpwatch" |
Syslog |
|
|
Systemd Temporary Files Syslogs |
Tag:"CQsystemd-tmpfiles" |
Syslog |
|
|
F5 Big-IP |
Tag:"F5BigIPAudit" |
Syslog |
|
|
Cisco Firepower SFIMS |
Tag:"CQSFIMS" |
Syslog |
|
|
Cisco Firepower Health Monitoring Notify |
Tag:"CQHMNOTIFY" |
Syslog |
|
|
Unify Kernel |
Tag:"CQkernel" |
Syslog |
|
|
Unify Dropbear |
Tag:"CQdropbear" |
Syslog |
|
|
Unify Host access point daemon |
Tag:"CQhostapd" |
Syslog |
|
|
Unify Lightweight Directory Access Protocol CLI |
Tag:"CQlldpcli" |
Syslog |
|
|
Unify Lightweight Directory Access Protocol Daemon |
Tag:"CQlldpd" |
Syslog |
|
|
Unify Procd |
Tag:"CQprocd" |
Syslog |
|
|
Unify Logread |
Tag:"CQlogread" |
Syslog |
|
|
Unify Mca-ctrl |
Tag:"CQmca-ctrl" |
Syslog |
|
|
Unify Mca-monitor |
Tag:"CQmca-monitor" |
Syslog |
|
|
Unify Qos_control.sh |
Tag:"CQqos_control.sh" |
Syslog |
|
|
Unify Stahtd |
Tag:"CQstahtd" |
Syslog |
|
|
Unify Stamgr |
Tag:"CQstamgr" |
Syslog |
|
|
Unify Sysmon |
Tag:"CQsysmon" |
Syslog |
|
|
Unify Syswrapper |
Tag:"CQsyswrapper" |
Syslog |
|
|
Unify Urandom_seed |
Tag:"CQurandom_seed" |
Syslog |
|
|
Unify Libubnt |
Tag:"CQlibubnt" |
Syslog |
|
|
Unify Wevent |
Tag:"CQwevent" |
Syslog |
|
|
Unify Uplink-monitor |
Tag:"CQuplink-monitor" |
Syslog |
|
|
Unify Utermd |
Tag:"CQutermd" |
Syslog |
|
|
Unify Mcad |
Tag:"CQmcad" |
Syslog |
|
|
Unify Qos_cl.sh |
Tag:"CQqos_cl.sh" |
Syslog |
|
|
Unify Uplink |
Tag:"CQuplink" |
Syslog |
|
|
Standalone LDAP Daemon |
Tag:"CQslapd" |
Syslog |
|
|
Canonical Livepatch Service Syslogs |
Tag:"CQcanonical-livepatch" |
Syslog |
|
|
Python3 logs |
Tag:"CQpython3" |
Syslog |
|
|
VMware Alias Manager and Ticket Service logs |
Tag:"CQVGAuthService" |
Syslog |
|
| On prem Security Applications |
|
|
|
|
|
FortiMail |
Tag:"FortiMail" |
Syslog |
|
|
Safetica DLP |
Tag:"SafeticaDLP" |
Syslog |
|
|
CiscoISE |
Tag:"CiscoISE" |
Syslog |
|
|
CiscoFirePower |
Tag:"CiscoFirePower" |
Syslog |
|
|
DarkTrace |
Tag:"DarkTrace" |
Syslog |
DarkTrace |
|
FireEyeIPS |
Tag:"FireEyeIPS" |
Syslog |
|
|
HAProxy |
Tag:"HAProxy" |
Syslog |
|
|
CiscoDuoSecurity |
Tag:"CiscoDuoSecurity" |
Syslog |
|
|
TippingPointCEF |
Tag:"TippingPointCEF" |
Syslog |
|
|
CyberQuest_WebAudit |
Tag:"CQCyberQuest_WebAudit" |
Syslog |
|
|
CEF |
Tag:"ArcSightCEF" |
Syslog |
|
|
Quest File Access Audit |
Tag:"QuestFileAccessAudit" |
Applications |
|
|
ActiveDirectoryInformation |
Tag:"ActiveDirectoryInformation" |
Applications |
Active Directory Information |
|
CQ HAProxy |
Tag:"CQhaproxy" |
Syslog |
|
|
CheckPoint Gaia Operation System |
Tag:"CheckPointGAIA" |
Syslog |
CheckPointGAIA |
|
Cisco Secure Firewall Management Center |
Tag:"CiscoFMC" |
Syslog |
|
|
Squid Web Proxy |
Tag:"CQsquid" |
Syslog |
Squid |
|
ArcSight |
Tag:"Arcsight" |
Syslog |
|
|
SophosUTM |
Tag:"SophosUTM" |
Syslog |
|
| PrintService |
|
|
|
|