Types of Event Type Fields

Welcome to Exabeam Security Content
- Security Content in the Legacy Structure
What is Security Content?
- The Security Content Pipeline
- The Content Library
Understanding the Log
- Do You Need a Parser?
  - Parsing for Data Lake
  - Parsing for Advanced Analytics
- Log Process Example
Exabeam Parsers
Exabeam Event Building
Exabeam Enrichment
Exabeam Persistence and Templates
Exabeam Models
Exabeam Rules

When an event builder creates an event from a log, information from that log is mapped to three types of fields: required, extended, and informational.

An event builder always creates an event of a specific type. Each event type has unique fields that correlate to certain information in a log. There are three types of fields: required, extended, and informational.

For an event builder to create an event, a log must contain information that matches an event type's required fields. Information that maps to extended and informational fields is optional to create an event, but is still useful to process and display the event.

For a table of event types and their required, extended, and informational fields, see Event Types and Required Fields.

Security ContentExabeam Security Content in the Legacy Structure

Table of ContentsTable of Contents

Types of Event Type Fields