<span class="pill kill-chain">_time</span>
</div>
Data Source: Sysmon EventID 26
Description
Data source object for Sysmon EventID 26
Details
| Property | Value |
|---|---|
| Source | XmlWinEventLog:Microsoft-Windows-Sysmon/Operational |
| Sourcetype | xmlwineventlog |
| Separator | EventID |
Supported Apps
- Splunk Add-on for Sysmon (version 4.0.2)
Event Fields
Fields
Source: GitHub | Version: 1