V 2.0 HTTP Requests Event
Vendor Documentation
Classification
| Rule Name | Rule Type | Classification | Common Event |
|---|---|---|---|
| V 2.0 HTTP Requests Event | Base Rule | Network Traffic | Get Request Activity |
Mapping with LogRhythm Schema
| Device Key in Log Message | LogRhythm Schema | Data Type | Schema Description |
|---|---|---|---|
| N/A | N/A | N/A | Flow start time. |
| N/A | N/A | N/A | Flow stop time. |
| N/A | <object> | Text/String | Device name. |
| N/A | <vendorinfo> | Text/String | Event type. |
| src | <sip> <sport> | IP Address Number | N/A |
| dst | <dip> <dport> | IP Address Number | N/A |
| mac | <dmac> | Text/String | MAC Address. |
| request | <command> | Text/String | Request name |
| N/A | <url> | Text/String | Request Url |