Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Carbon Black Cloud: What field can be used to determine the observed / threat alert categories?

Carbon Black Cloud: What field can be used to determine the observed / threat alert categories?

Environment

  • Carbon Black Cloud: All versions

Question

When forwarding events, what field shows the observed / threat alert categories? 

Answer

As of APIv6, this information is stored in the 'category' field, the description will vary by where it is viewed
UIThreatObserved
APITHREATMONITORED
Date ForwarderWARNINGNOTICE

Related Content


Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎12-21-2021
Views:
106
Contributors