SNIPER ONE-i Detection
Real-time Detection and System Events
| Type | Field | Display Name | Description |
|---|---|---|---|
| DATE | _time | Time | |
| STRING | sensor_id | Sensor ID | |
| STRING | risk | Risk | |
| STRING | direction | Direction | |
| IP | src_ip | Source IP | |
| PORT | src_port | Source Port | |
| IP | dst_ip | Destination IP | |
| PORT | dst_port | Destination Port | |
| STRING | protocol | Protocol | |
| STRING | category | Category | |
| STRING | sid | SID | |
| STRING | signature | Attack Name | |
| STRING | action | Response | |
| STRING | method | Block Method | |
| STRING | reason | Block Reason | |
| STRING | cve | CVE | |
| STRING | ip_pool | IP Pool | |
| LONG | drop_pkts | Blocked Packets | |
| LONG | drop_bytes | Blocked Bytes | |
| LONG | redirect_pkts | Redirected Packets | |
| LONG | redirect_bytes | Redirected Bytes | |
| STRING | payload | Payload |