osquery sample event message
Use this sample event message as a way of verifying a successful integration with QRadar.
The following table provides a sample event message when using the TCP multiline syslog protocol
for the osquery DSM:
Event name | Low-level category | Sample log message |
---|---|---|
User Added | User Account Added |
|