Data sources | Trend Micro

Views:

Connect the data sources required for various queries.

Data sources / processors

Category	Data Source / Processor
Cloud	Agentless Vulnerability & Threat Detection Trend Cloud One - Application Security XDR for Cloud - AWS CloudTrail XDR for Cloud - AWS VPC Flow Logs XDR for Cloud - Amazon Security Lake
Email	Email and Collaboration Sensor Cloud App Security Trend Micro Email Security
Endpoint	Data Security Sensor Trend Cloud One - Endpoint & Workload Security Trend Micro Apex Central On-Premises Trend Micro Apex One as a Service Deep Security
Identity	Active Directory (on-premises) Microsoft Entra ID
Network	Mobile Network Security Network Sensor TippingPoint Security Management System Trend Cloud One - Network Security Deep Discovery Inspector Trend Micro Web Security Zero Trust Secure Access Internet Access Zero Trust Secure Access Private Access
Others	File Security File Security Storage InterScan Messaging Security Virtual Appliance Mobile Security as a Service ScanMail for Microsoft Exchange TXOne EdgeOne TXOne StellarOne Trend Cloud One - AWS CloudTrail Integration Trend Micro Deep Discovery Email Inspector
Third-Party Logs	All logs sent to Trend Vision One from third-party products For more information, see Install the Third-Party Log Collection service on a Service Gateway.

General and Advanced Methods

Method

Data Sources

General Search

Trend Micro products and compatible third-party products connected to Trend Vision One

Observed Attack Techniques

Trend Micro products and compatible third-party products connected to Trend Vision One

Note

Use this method when automatically creating a query from configured filters in Observed Attack Techniques.

Advanced: Cloud Activity Data

Trend Cloud One - Endpoint & Workload Security

XDR for Cloud - AWS VPC Flow Logs

Trend Cloud One - Conformity

Tip

For more information on how to connect Trend Cloud One - Conformity, see:

Advanced: Container Activity Data

Trend Vision One™ - Container Security

Advanced: Detections

Trend Micro products and compatible third-party products connected to Trend Vision One

Advanced: Email and Collaboration Activity Data

Email and Collaboration Sensor

Advanced: Endpoint Activity Data

Endpoint Sensor

Trend Micro Apex One as a Service

Trend Cloud One - Endpoint & Workload Security

Advanced: Firewall activity data sources

XDR for Cloud - AWS VPC Flow Logs

Connected Trend Micro products

Advanced: Identity and Access Activity Data

Microsoft Entra ID

Advanced: Mobile Activity Data

Trend Micro Mobile Security as a Service

Advanced: Network Activity Data

Virtual Network Sensor

Deep Discovery Inspector

XDR for Cloud - AWS VPC Flow Logs

Zero Trust Secure Access Private Access

Zero Trust Secure Access Internet Access

Advanced: Secure Access Activity Data

Zero Trust Secure Access Private Access

Zero Trust Secure Access Internet Access

Advanced: Web Activity Data

Trend Micro Web Security

Important

You must use Product Instance to connect Trend Micro Web Security. For more information, see Connect existing products to Product Instance .