- Welcome to Exabeam Security Content
- What is Security Content?
- Common Information Model
- What is the Common Information Model?
- Common Information Model Context Elements
- Common Information Model Interface
- Common Information Model Event-naming Format
- Common Information Model Impact on Downstream Processes
- Using the Common Information Model to Create Custom Content
- Transitioning to the Common Information Model
- Understanding the Log
- Exabeam Parsers
- Exabeam Event Building
- Exabeam Enrichment
- Exabeam Persistence and Templates
- Exabeam Models
- Exabeam Rules
PrevNext
Model Categories
In both user-based and asset-based models, the Category attribute helps define the scope of a model. The list below includes some of the default Exabeam model categories. For definitions and examples of Exabeam model attributes, see Model Attributes.
Alerts
Applications
Asset Activity Monitoring
Assets
Critical Server Login
DLP
Database Activity
Devices
Directory Service
Domain Controller Login
Email
End Point Activity
File Access
Groups
Identities
Locations
Network
Network Alert
Other
Physical Access
Print Activity
Privilege Access
Time
TopGroups
TopUsers
Users
VPN
Web Activity
Windows Audit Change
Workstations
Zones