Sensor Types
search queries advanced search query language builder integrations
The following are valid sensor_type
values that can be used in Advanced Search Query Language and Advanced Search Builder in Secureworks® Taegis™ XDR.
Syslog sensor_type
⫘
- Akamai App & API Protector
- Akamai EAA
- Akamai Guardicore
- ARUBA_CLEARPASS
- BARRACUDA_FW
- BARRACUDA_WAF
- BlueCoat ProxySG
- Cato Networks
- Check Point
- Cisco IOS
- Cisco IronPort
- Cisco_ISE
- CISCO_FIREWALL_ASA
- CISCO_FIREWALL_FTD
- CISCO_MERAKI
- Claroty
- Cloudflare
- Corelight
- CyberArk
- DARKTRACE_SYSLOG
- Dragos
- F5
- FORCEPOINT_FIREWALL
- FORCEPOINT_SECURE_WEB_GATEWAY
- FORTIGATE_FW
- Fortinet FortiWeb
- Imperva Cloud
- Imperva SecureSphere
- Juniper SRX Firewall
- LastLine
- MCAFEE_EPO
- McAfee WebGateway
- MICROSOFT_WINDOWS_SNARE
- MICROSOFT_WINDOWS_SPLUNK
- Microsoft IIS
- MSDHCP
- MSDNS
- named
- Netscaler
- Netskope
- Nozomi
- PALOALTO_FIREWALL
- pfSense Firewall
- PulseSecure_SA
- SCADAfence
- SilentDefense
- SonicWall
- Sophos SFOS
- sshd
- sudo
- SuricataEve
- Symantec Endpoint Protection
- TaegisNGAV
- TREND_MICRO_DEEP_SECURITY
- VMware vCenter
- Watchguard Firewall
- Zscaler Firewall
- Zscaler Firewall DNS
- Zscaler NSS
Endpoint sensor_type
⫘
- ENDPOINT_TAEGIS
- ENDPOINT_REDCLOAK
- ENDPOINT_CARBON_BLACK_PSC
- ENDPOINT_CROWD_STRIKE
- ENDPOINT_MICROSOFT_ATP
- ENDPOINT_SENTINELONE
Secureworks sensor_type
⫘
- ISENSOR
API sensor_type
⫘
- AbnormalSecurity
- Amazon GuardDuty
- AWS Application Load Balancer
- AWS CloudTrail
- AWS VPC Flow
- AWS WAF
- Azure Application Gateway
- Azure Firewall
- Azure Flow Logs
- Azure Front Door
- Azure Risk Detection
- Cisco Duo
- Cisco eStreamer
- Cisco Umbrella
- Google Cloud Platform
- Google Workspace
- IMPERVA_INCAPSULA
- MICROSOFT_AZURE_ACTIVITY
- MICROSOFT_GRAPH_ALERTS
- MICROSOFT_GRAPH_SIGN_IN
- MICROSOFT_GRAPH_DIRECTORY_AUDIT
- MICROSOFT_OFFICE_MANAGEMENT
- Mimecast
- OKTA
- ORACLE_OCI
- Proofpoint