Chronicle v1 API - Enum DataSource (1.0.0-beta05)

public enum DataSource

Reference documentation and code samples for the Chronicle v1 API enum DataSource.

LINT.IfChange(data_sources)

Namespace

Google.Cloud.Chronicle.V1.dll

Fields
Name	Description
`DataTable`	DATA_TABLE is used for data tables source.
`Entity`
`Global`	GLOBAL is used for standard time range filter.
`IngestionMetrics`
`Investigation`	INVESTIGATION is used as the data source for triage agent investigations. Identified as `gemini_investigation`.
`InvestigationFeedback`	INVESTIGATION_FEEDBACK is used as the data source for user feedback on triage agent investigations. Identified as `gemini_investigation_feedback`.
`IocMatches`	IOC_MATCHES is used for ioc_matches datasource.
`RuleDetections`	RULE_DETECTIONS is used for detections datasource.
`Rules`	RULES is used for rules datasource.
`Rulesets`	RULESETS is used for ruleset with detections datasource.
`SoarCaseHistory`	SOAR Case History - identified as `case_history`.
`SoarCases`	SOAR Cases - identified as `case`.
`SoarPlaybooks`	SOAR Playbooks - identified as `playbook`.
`Udm`
`Unspecified`