System Alerts

<< PREVIOUS NEXT >>

SYSTEM ALERTS

AI ASSOCIATED TO APPLICATION

Code: 114
Brief Description: AI Associated to Application
Provided Information:
1. IP Address of the user
2. Version of the Application
3. Associated by (username)
4. Hostname
5. Associated at (timestamp)
6. IP Address
7. Application name
Sample log message:
1. CEF format
  
  Jul 27 04:30:50 10.16.6.4 CEF: 1|Virsec Security Platform|Virsec|1.3.0|114|AI Associated to Application|5|src=10.16.6.4 version=1 [email protected] hostname=iis_dotnet_18 associated_at=27 Jul 2020 08:32:01 AM UTC ip_address=10.16.6.18 application=Win_Webgoat_10_job msg=Application Instance iis_dotnet_18 associated to Win_Webgoat_10_job application.
2. CEF - Fixed Key Definition format
  
  Sep 25 01:47:14 int.cms.virsec.com CEF: 1|Virsec Security Platform|Virsec|1.4.0|114|AI Associated to Application|5|cs1Label=src cs1=10.16.13.12 cs2Label=version cs2=1.0 cs3Label=associated_by [email protected] cs4Label=hostname cs4=WINDOWSOVA_23_2 cs5Label=associated_at cs5=25 Sep 2020 07:51:30 AM UTC cs6Label=ip_address cs6=10.16.13.26 cs7Label=application cs7=webgoat cs8Label=msg cs8=Application Instance WINDOWSOVA_23_2 associated to webgoat application.

NEW AI REGISTRATION

Code: 116
Brief Description: New AI Registration
Provided Information:
1. IP Address
2. Registered at (timestamp)
3. Host name
Sample log message:
1. CEF format
  
  Jul 6 12:48:28 10.16.6.4 CEF: 1|Virsec Security Platform|Virsec|1.3.0|116|New AI Registration|5|src=10.16.6.4 registered_at=06 Jul 2020 04:49:32 PM UTC hostname=win_webgoat_18 ip_address=10.16.6.18 msg=Application Instance win_webgoat_18 registered with the CMS.
2. CEF - Fixed Key Definition format
  
  Sep 7 10:43:28 10.16.6.4 CEF: 1|Virsec Security Platform|Virsec|1.4.0|116|New AI Registration|5|cs1Label=src cs1=10.16.6.4 cs2Label=registered_at cs2=07 Sep 2020 02:44:55 PM UTC cs3Label=hostname cs3=rhelwebgoat_17 cs4Label=ip_address cs4=10.16.6.17 cs5Label=msg cs5=Application Instance rhelwebgoat_17 registered with the CMS.

<< PREVIOUS NEXT >>