Google SecOps has updated the list of supported default parsers

## Change Google SecOps has updated the list of supported default parsers. Parsers are updated gradually, so it might take one to four days before you see the changes reflected in your region. The following supported default parsers have changed. Each parser is listed by product name and `log_type` value, if applicable. This list now includes both released default parsers and pending parser updates. * A10 Load Balancer (`A10_LOAD_BALANCER`) * Akamai Enterprise Application Access (`AKAMAI_EAA`) * Akamai WAF (`AKAMAI_WAF`) * Apache (`APACHE`) * Apache Tomcat (`TOMCAT`) * AppOmni (`APPOMNI`) * Arcsight CEF (`ARCSIGHT_CEF`) * Aruba (`ARUBA_WIRELESS`) * Aruba Airwave (`ARUBA_AIRWAVE`) * Atlassian Cloud Admin Audit (`ATLASSIAN_AUDIT`) * Attivo Networks (`ATTIVO`) * Auth0 (`AUTH_ZERO`) * Avigilon Access Logs (`AVIGILON_ACCESS_LOGS`) * AWS Cloudtrail (`AWS_CLOUDTRAIL`) * AWS GuardDuty (`GUARDDUTY`) * AWS RDS (`AWS_RDS`) * AWS Security Hub (`AWS_SECURITY_HUB`) * AWS VPC Flow (`AWS_VPC_FLOW`) * Azure AD (`AZURE_AD`) * Azure Application Gateway (`AZURE_GATEWAY`) * Azure Cosmos DB (`AZURE_COSMOS_DB`) * Azure Firewall (`AZURE_FIREWALL`) * Azure Front Door (`AZURE_FRONT_DOOR`) * Bindplane Agent (`BINDPLANE_AGENT`) * BloxOne Threat Defense (`BLOXONE`) * Blue Coat Proxy (`BLUECOAT_WEBPROXY`) * Cato Networks (`CATO_NETWORKS`) * Check Point (`CHECKPOINT_FIREWALL`) * Check Point Harmony (`CHECKPOINT_HARMONY`) * CircleCI (`CIRCLECI`) * Cisco AMP (`CISCO_AMP`) * Cisco Application Centric Infrastructure (`CISCO_ACI`) * Cisco ASA (`CISCO_ASA_FIREWALL`) * Cisco Email Security (`CISCO_EMAIL_SECURITY`) * Cisco Firepower NGFW (`CISCO_FIREPOWER_FIREWALL`) * Cisco Internetwork Operating System (`CISCO_IOS`) * Cisco ISE (`CISCO_ISE`) * Cisco NX-OS (`CISCO_NX_OS`) * Cisco Umbrella DNS (`UMBRELLA_DNS`) * Cisco Umbrella Web Proxy (`UMBRELLA_WEBPROXY`) * Cisco vManage SD-WAN (`CISCO_SDWAN`) * Cisco VPN (`CISCO_VPN`) * Citrix Netscaler (`CITRIX_NETSCALER`) * Cloudflare (`CLOUDFLARE`) * Cloudflare Warp (`CLOUDFLARE_WARP`) * CrowdStrike Detection Monitoring (`CS_DETECTS`) * CrowdStrike Falcon (`CS_EDR`) * CrowdStrike Falcon Stream (`CS_STREAM`) * Crowdstrike Identity Protection Services (`CS_IDP`) * Dell CyberSense (`DELL_CYBERSENSE`) * Duo Administrator Logs (`DUO_ADMIN`) * Elastic Packet Beats (`ELASTIC_PACKETBEATS`) * Elastic Windows Event Log Beats (`ELASTIC_WINLOGBEAT`) * ExtraHop RevealX (`EXTRAHOP`) * F5 ASM (`F5_ASM`) * F5 BIGIP LTM (`F5_BIGIP_LTM`) * F5 Distributed Cloud Services (`F5_DCS`) * Fastly CDN (`FASTLY_CDN`) * Forcepoint DLP (`FORCEPOINT_DLP`) * Forcepoint Proxy (`FORCEPOINT_WEBPROXY`) * FortiGate (`FORTINET_FIREWALL`) * Fortinet FortiAnalyzer (`FORTINET_FORTIANALYZER`) * Fortinet FortiClient (`FORTINET_FORTICLIENT`) * Fortinet FortiDDoS (`FORTINET_FORTIDDOS`) * Fortinet FortiEDR (`FORTINET_FORTIEDR`) * Fortinet Proxy (`FORTINET_WEBPROXY`) * GitHub (`GITHUB`) * Gitlab (`GITLAB`) * HP Linux (`HP_LINUX`) * IBM Guardium (`GUARDIUM`) * Imperva (`IMPERVA_WAF`) * Juniper MX Router (`JUNIPER_MX`) * Kemp Load Balancer (`KEMP_LOADBALANCER`) * Linkshadow NDR (`LINKSHADOW_NDR`) * Linux Auditing System (AuditD) (`AUDITD`) * McAfee Web Gateway (`MCAFEE_WEBPROXY`) * McAfee Web Protection (`MCAFEE_WEB_PROTECTION`) * Micro Focus iManager (`MICROFOCUS_IMANAGER`) * Microsoft Azure NSG Flow (`AZURE_NSG_FLOW`) * Microsoft Azure Resource (`AZURE_RESOURCE_LOGS`) * Microsoft CyberX (`CYBERX`) * Microsoft Defender for Endpoint (`MICROSOFT_DEFENDER_ENDPOINT`) * Microsoft Dynamics 365 User Activity (`MICROSOFT_DYNAMICS_365`) * Microsoft Graph API Alerts (`MICROSOFT_GRAPH_ALERT`) * Microsoft Netlogon (`MICROSOFT_NETLOGON`) * Microsoft PowerShell (`POWERSHELL`) * Microsoft System Center Endpoint Protection (`MICROSOFT_SCEP`) * Mikrotik Router (`MIKROTIK_ROUTER`) * Mimecast URL Logs (`MIMECAST_URL_LOGS`) * Office 365 (`OFFICE_365`) * Okta (`OKTA`) * Okta User Context (`OKTA_USER_CONTEXT`) * Open LDAP (`OPENLDAP`) * Open Policy Agent (`OPA`) * Oracle (`ORACLE_DB`) * Oracle Cloud Guard (`OCI_CLOUDGUARD`) * Orca Cloud Security Platform (`ORCA`) * Palo Alto Cortex XDR Alerts (`CORTEX_XDR`) * Palo Alto Networks Firewall (`PAN_FIREWALL`) * Palo Alto Networks IoT Security (`PAN_IOT`) * Palo Alto Prisma Cloud Alert payload (`PAN_PRISMA_CA`) * ProFTPD (`PROFTPD`) * Proofpoint Observeit (`OBSERVEIT`) * Proofpoint On Demand (`PROOFPOINT_ON_DEMAND`) * ProofPoint Secure Email Relay (`PROOFPOINT_SER`) * Proofpoint Tap Alerts (`PROOFPOINT_MAIL`) * Proofpoint Threat Response (`PROOFPOINT_TRAP`) * RSA SecurID Access Identity Router (`RSA_SECURID`) * Rubrik (`RUBRIK`) * Salesforce (`SALESFORCE`) * Security Command Center Threat (`N/A`) * Sentry (`SENTRY`) * ServiceNow Audit (`SERVICENOW_AUDIT`) * ServiceNow CMDB (`SERVICENOW_CMDB`) * Smartsheet (`SMARTSHEET`) * Snare System Diagnostic Logs (`SNARE_SOLUTIONS`) * Snowflake (`SNOWFLAKE`) * Solaris system (`SOLARIS_SYSTEM`) * SonicWall (`SONIC_FIREWALL`) * Sophos Central (`SOPHOS_CENTRAL`) * Sophos UTM (`SOPHOS_UTM`) * Sourcefire (`SOURCEFIRE_IDS`) * Suricata EVE (`SURICATA_EVE`) * Symantec DLP (`SYMANTEC_DLP`) * Symantec Endpoint Protection (`SEP`) * Symantec Event export (`SYMANTEC_EVENT_EXPORT`) * Symantec Web Security Service (`SYMANTEC_WSS`) * Sysdig (`SYSDIG`) * Tableau (`TABLEAU`) * Tanium Asset (`TANIUM_ASSET`) * Tanium Threat Response (`TANIUM_THREAT_RESPONSE`) * tenable.io (`TENABLE_IO`) * Trend Micro (`TIPPING_POINT`) * Trend Micro Deep Security (`TRENDMICRO_DEEP_SECURITY`) * Trend Micro Vision One (`TRENDMICRO_VISION_ONE`) * TrendMicro Deep Discovery Inspector (`TRENDMICRO_DDI`) * UberAgent (`UBERAGENT`) * Unix system (`NIX_SYSTEM`) * Vectra Detect (`VECTRA_DETECT`) * Vectra Stream (`VECTRA_STREAM`) * Venafi ZTPKI (`VENAFI_ZTPKI`) * Vercel WAF (`VERCEL_WAF`) * Virtru Email Encryption (`VIRTRU_EMAIL_ENCRYPTION`) * WatchGuard (`WATCHGUARD`) * Wazuh (`WAZUH`) * Windows DNS (`WINDOWS_DNS`) * Windows Event (`WINEVTLOG`) * Windows Event (XML) (`WINEVTLOG_XML`) * Windows Network Policy Server (`WINDOWS_NET_POLICY_SERVER`) * Zendesk CRM (`ZENDESK_CRM`) * ZeroFox Platform (`ZEROFOX_PLATFORM`) * Zimperium (`ZIMPERIUM`) * Zoom Operation Logs (`ZOOM_OPERATION_LOGS`) * Zscaler (`ZSCALER_WEBPROXY`) * Zscaler Internet Access Audit Logs (`ZSCALER_INTERNET_ACCESS`) * Zscaler Secure Private Access Audit Logs (`ZSCALER_ZPA_AUDIT`) The following log types were added without a default parser. Each parser is listed by product name and `log_type` value, if applicable. * Arcon PAM (`ARCON_PAM`) * Azure VNET Flow (`AZURE_VNET_FLOW`) * Cameyo Activity Logs (`CAMEYO_ACTIVITY_LOGS`) * ChromeOS XDR (`CHROMEOS_XDR`) * Cisco Vulnerability Management (`CISCO_VULNERABILITY_MANAGEMENT`) * Cloudflare Network Analytics (`CLOUDFLARE_NETWORK_ANALYTICS`) * Draytek Router (`DRAYTEK_ROUTER`) * FA Solutions (`FA_SOLUTIONS`) * Files dot com (`FILES_DOT_COM`) * Fortinet ADC (`FORTINET_ADC`) * FoxPass Audit Logs (`FOXPASS_AUDIT_LOGS`) * Front (`FRONT`) * Ghangor DLP (`GHANGOR_DLP`) * Hillstone Firewall (`HILLSTONE_NGFW`) * Hoxhunt (`HOXHUNT`) * Huawei NextGen Firewall (`HUAWEI_FIREWALL`) * Huawei Fusion Sphere Hypervisor (`HUAWEI_FUSIONSPHERE`) * IBM Security Verify Access (`IBM_SVA`) * Indusface WAF (`INDUSFACE_WAF`) * Informatica (`INFORMATICA`) * Informatica Powercenter (`INFORMATICA_POWERCENTER`) * Intel Endpoint Management Assistant (`INTEL_EMA`) * Jamf Protect Telemetry V2 (`JAMF_TELEMETRY_V2`) * JiranSecurity MailScreen (`JIRANSECURITY_MAILSCREEN`) * Juniper SSR Conductor (`JUNIPER_SSR_CONDUCTOR`) * Metabase (`METABASE`) * Netlify Log Drains (`NETLIFY_LOGDRAINS`) * Pingcap TIDB (`PINGCAP_TIDB`) * PingOne Advanced Identity Cloud (`PINGONE_AIC`) * PingOne Protect (`PINGONE_PROTECT`) * Privacy-I (`PRIVACY_I`) * ReviveSec (`REVIVESEC`) * Sangfor Proxy (`SANGFOR_PROXY`) * SoftEther VPN (`SOFTETHER_VPN`) * Tehtris EDR (`TEHTRIS_EDR`) * TrendMicro Cloud Email Gateway Protection (`TRENDMICRO_CLOUD_EMAIL_GATEWAY_PROTECTION`) * VMware VeloCloud SD-WAN (`VELOCLOUD_SDWAN`) * Wing Security (`WING_SECURITY`) For a list of supported log types and details about default parser changes, see [Supported log types and default parsers](https://cloud.google.com/chronicle/docs/ingestion/parser-list/supported-default-parsers).