Carbon Black Cloud: What field can be used to determine the observed / threat alert categories?
search cancel

Carbon Black Cloud: What field can be used to determine the observed / threat alert categories?

book

Article ID: 290312

calendar_today

Updated On:

Products

Carbon Black Cloud Endpoint Standard (formerly Cb Defense)

Issue/Introduction

When forwarding events, what field shows the observed / threat alert categories? 

Environment

  • Carbon Black Cloud: All versions

Resolution

As of APIv6, this information is stored in the 'category' field, the description will vary by where it is viewed
UIThreatObserved
APITHREATMONITORED
Date ForwarderWARNINGNOTICE
Powered by Wolken Software