IMPORTANT: No additional bug fixes or documentation updates will be released for this version. For the latest information, see the current release documentation.

›

Exported fields

A newer version is available. Check out the latest documentation.

Exported fields

This document describes the fields that are exported by Winlogbeat. They are grouped in the following categories:

Beat fields
Cloud provider metadata fields
Docker fields
ECS fields
Legacy Winlogbeat alias fields
Host fields
Jolokia Discovery autodiscover provider fields
Kubernetes fields
PowerShell module fields
Process fields
Security module fields
Sysmon module fields
Winlogbeat fields

« Sysmon Module Beat fields »