What log types are found in Fortisandbox?

In FortiSandbox, the primary log types that you will encounter include Malware and Network alerts. These logs are specifically designed to provide insights into threats detected by the sandbox environment, which analyzes files and URLs for potential malicious activity.

Malware alerts focus on detected malware threats, detailing specifics such as the type of malware, its behavior, and any actions taken by FortiSandbox in response. Network alerts, on the other hand, track unusual network behavior associated with files and URLs analyzed within the sandbox, helping identify broader network threats beyond just file-based malware.

The context provided by these logs is critical for security analysts to understand the nature and source of threats within the network, allowing for a more effective response to potential incidents. This understanding aids organizations in refining their security posture, enhancing overall cybersecurity measures, and providing comprehensive reports regarding potential attacks.