[Cloudflare Logpush] Add support for new fields and Page Shield data stream #9809
Labels
Integration:Cloudflare Logpush
Cloudflare Logpush
Team:Security-Service Integrations
Security Service Integrations Team
Cloudflare has updated most of their event datasets with new fields that the integration doesn't support. Here there is a table with the fields that are missed so far.
Ref
CustomResolverAddress
CustomResolverPolicyID
CustomResolverPolicyName
CustomResolverResponse
IsResponseCached
MatchedIndicatorFeedIDs
MatchedIndicatorFeedNames
QueryIndicatorFeedIDs
QueryIndicatorFeedNames
DownloadMatchedDlpProfiles
SessionID
UploadMatchedDlpProfileEntries
UploadMatchedDlpProfiles
ClientRegionCode
ContentScanObjResults
ContentScanObjTypes
JA3Hash
LeakedCredentialCheckResult
RequestHeaders
ResponseHeaders
WorkerWallTimeUs
ColoCity
ColoCode
DestinationASNName
RuleName
SourceASNName
ScriptVersion
Reference: https://developers.cloudflare.com/logs/reference/log-fields/
On the other hand, a new dataset called Page Shield has been added.
The text was updated successfully, but these errors were encountered: