Merge pull request #96 from mattwillems/patch-3

UncoderIO · web-flow · commit 9201a812f33e · 2024-04-18T12:14:42.000+02:00
Adding Windows Logon and Subject fields
diff --git a/uncoder-core/app/translator/mappings/platforms/logrhythm_axon/default.yml b/uncoder-core/app/translator/mappings/platforms/logrhythm_axon/default.yml
@@ -303,3 +303,7 @@ field_mapping:
     - action.message
     - action.result.reason
   cs-ip: origin.host.ip_address.value
+  SubjectLogonId: action.session.id
+  SubjectUserName: origin.account.name
+  SubjectUserSid: origin.account.id
+  SubjectDomainName: origin.account.domain
