This document provides details on the query order fields and directions that are supported by each provider for each operation. Orders can be used to specify the direction of the results of an operation, such as ordering by a specific field in ascending or descending order. If a provider or operation does not support ordering, it will not be listed here.
| Field | CrowdStrike Falcon® Next-Gen SIEM | Elastic SIEM | Google Security Operations (Chronicle Compatibility) | Google Security Operations | Synqly Test Provider | OpenSearch SIEM | IBM QRadar SIEM | Rapid7 InsightIDR | Microsoft Sentinel | Splunk Enterprise Security | Sumo Logic Cloud SIEM |
|---|
| timestamp | | asc, desc | | | | | | | | | |
| Field | CrowdStrike Falcon® Next-Gen SIEM | Elastic SIEM | Google Security Operations (Chronicle Compatibility) | Google Security Operations | Synqly Test Provider | OpenSearch SIEM | IBM QRadar SIEM | Rapid7 InsightIDR | Microsoft Sentinel | Splunk Enterprise Security | Sumo Logic Cloud SIEM |
|---|
| time | asc, desc | asc, desc | | | | | | | | | asc, desc |
| Field | CrowdStrike Falcon® Next-Gen SIEM | Elastic SIEM | Google Security Operations (Chronicle Compatibility) | Google Security Operations | Synqly Test Provider | OpenSearch SIEM | IBM QRadar SIEM | Rapid7 InsightIDR | Microsoft Sentinel | Splunk Enterprise Security | Sumo Logic Cloud SIEM |
|---|
| time | | | | | | | | | | | asc, desc |