circle-info
Welcome to the new Logpoint documentation portal! Can’t find what you’re looking for?
Visit the old documentation portal.arrow-up-right
search

SentinelOne Log Reference

hashtag
Log Samples

Learn what raw SentinelOne events look like before they're processed in Logpoint:

CEF

<123>CEF:0|SentinelOne|MGMT|Windows 8.1|19|Threat Detected|11|rt=Jul 14 2017 14:10:00 HelloKey=hello filehash=8abb0a6ace21a12bea2df4fd3b126a5fc5469ffc duid=54f6ce66dfa494cf81159ed8 destinationServiceName=sneezingpanda2006.exe msg=sneezingpanda2006.exe has been detected as malware filePath=\Device\HarddiskVolume1\Users\JohnDoe\Downloads\sneezingpanda2006.exe cs1=Test value1 cs1Label=Test Key1 cn1=1000 cn1Label=Test Key2

Last updated

Was this helpful?