Subset: system_subset
System Activity events.
URI: system_subset
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/ocsf
Classes in subset
| Class | Description |
|---|---|
| EventLogActvity | Event Log Activity events report actions pertaining to the system's event |
| FileActivity | File System Activity events report when a process performs an action on a fil... |
| KernelActivity | Kernel Activity events report when an process creates, reads, or deletes a |
| KernelExtensionActivity | Kernel Extension events report when a driver/extension is loaded or unloaded |
| MemoryActivity | Memory Activity events report when a process has memory allocated, |
| ModuleActivity | Module Activity events report when an endpoint process acts on a |
| PeripheralActivity | Peripheral Activity events log a system's interactions with external, |
| ProcessActivity | Process Activity events report when a process launches, injects, opens or |
| ScheduledJobActivity | Scheduled Job Activity events report activities related to scheduled jobs or |
| ScriptActivity | Script Activity events report when a process executes a script |
| SystemEvent | The System Activity event is a generic event that defines a set of attributes |