Attack
Network threat detection log
| Type | Field | Display Name | Description |
|---|---|---|---|
| Date | event_time | Event time | Device time |
| String | risk | Risk | e.g. HIGH, MEDIUM, LOW |
| IP address | src_ip | Source IP | Attacker IP address |
| Integer | src_port | Source port | Attacker port |
| IP address | dst_ip | Destination IP | Victim IP |
| Integer | dst_port | Destination port | Victim port |
| String | protocol | Protocol | e.g. TCP, UDP, ICMP |
| String | category | Category | |
| String | hack_type | Hack type | |
| String | hack_code | Hack code | |
| String | signatgure | Signature | |
| String | action | Action | e.g. DETECT, BLOCK |
| String | info | Information | |
| String | raw_data | Raw data | Packet data |