1{ 2 "eventcfg": [ 3 { 4 "eventId" : "1011009000", 5 "eventName" : "check_sysrw", 6 "version" : 0, 7 "eventType" : 0, 8 "dataSensitivityLevel":1, 9 "storageRamNums" : 1, 10 "storageRomNums" : 5, 11 "storageTime" : -1, 12 "owner":["3001000000"], 13 "source" : 0, 14 "db_table": "risk_event" 15 }, 16 { 17 "eventId":"1011009001", 18 "eventName":"check_su", 19 "version":0, 20 "eventType":0, 21 "dataSensitivityLevel":1, 22 "storageRamNums":1, 23 "storageRomNums":5, 24 "storageTime" : -1, 25 "owner":["3001000000"], 26 "source" : 0, 27 "db_table": "risk_event" 28 }, 29 { 30 "eventId":"1011009002", 31 "eventName":"hvb_state", 32 "version":0, 33 "eventType":0, 34 "dataSensitivityLevel":1, 35 "storageRamNums":1, 36 "storageRomNums":5, 37 "storageTime" : -1, 38 "owner":["3001000001"], 39 "source" : 0, 40 "db_table": "risk_event" 41 }, 42 { 43 "eventId":"1011009003", 44 "eventName":"verified_boot_state", 45 "version":0, 46 "eventType":0, 47 "dataSensitivityLevel":1, 48 "storageRamNums":1, 49 "storageRomNums":5, 50 "storageTime" : -1, 51 "owner":["3001000001"], 52 "source" : 0, 53 "db_table": "risk_event" 54 }, 55 { 56 "eventId":"1011009004", 57 "eventName":"vbmeta_device_state", 58 "version":0, 59 "eventType":0, 60 "dataSensitivityLevel":1, 61 "storageRamNums":1, 62 "storageRomNums":5, 63 "storageTime" : -1, 64 "owner":["3001000001"], 65 "source" : 0, 66 "db_table": "risk_event" 67 }, 68 { 69 "eventId":"1011009005", 70 "eventName":"check_physical_machine", 71 "version":0, 72 "eventType":0, 73 "dataSensitivityLevel":1, 74 "storageRamNums":1, 75 "storageRomNums":5, 76 "storageTime" : -1, 77 "owner":["3001000002"], 78 "source" : 0, 79 "db_table": "risk_event" 80 }, 81 { 82 "eventId": "1011009100", 83 "eventName":"kcode", 84 "version":0, 85 "eventType":0, 86 "dataSensitivityLevel":1, 87 "storageRamNums":1, 88 "storageRomNums":5, 89 "storageTime" : -1, 90 "owner":["3001000000"], 91 "source" : 0, 92 "db_table": "risk_event" 93 }, 94 { 95 "eventId":"1011009101", 96 "eventName":"syscall", 97 "version":0, 98 "eventType":0, 99 "dataSensitivityLevel":1, 100 "storageRamNums":1, 101 "storageRomNums":5, 102 "storageTime" : -1, 103 "owner":["3001000000"], 104 "source" : 0, 105 "db_table": "risk_event" 106 }, 107 { 108 "eventId":"1011009102", 109 "eventName":"rootprocs", 110 "version":0, 111 "eventType":0, 112 "dataSensitivityLevel":1, 113 "storageRamNums":1, 114 "storageRomNums":5, 115 "storageTime" : -1, 116 "owner":["3001000000"], 117 "source" : 0, 118 "db_table": "risk_event" 119 }, 120 { 121 "eventId":"1011009103", 122 "eventName":"rodata", 123 "version":0, 124 "eventType":0, 125 "dataSensitivityLevel":1, 126 "storageRamNums":1, 127 "storageRomNums":5, 128 "storageTime" : -1, 129 "owner":["3001000000"], 130 "source" : 0, 131 "db_table": "risk_event" 132 }, 133 { 134 "eventId":"1011009104", 135 "eventName":"sehooks", 136 "version":0, 137 "eventType":0, 138 "dataSensitivityLevel":1, 139 "storageRamNums":1, 140 "storageRomNums":5, 141 "storageTime" : -1, 142 "owner":["3001000000"], 143 "source" : 0, 144 "db_table": "risk_event" 145 }, 146 { 147 "eventId":"1011009110", 148 "eventName":"XPM init", 149 "version":0, 150 "eventType":0, 151 "dataSensitivityLevel":1, 152 "storageRamNums":1, 153 "storageRomNums":5, 154 "storageTime" : -1, 155 "owner":[], 156 "source" : 0, 157 "db_table": "risk_event" 158 }, 159 { 160 "eventId":"1011009111", 161 "eventName":"XPM file", 162 "version":0, 163 "eventType":0, 164 "dataSensitivityLevel":1, 165 "storageRamNums":1, 166 "storageRomNums":5, 167 "storageTime" : -1, 168 "owner":[], 169 "source" : 0, 170 "db_table": "risk_event" 171 }, 172 { 173 "eventId":"1011009112", 174 "eventName":"XPM mmap", 175 "version":0, 176 "eventType":0, 177 "dataSensitivityLevel":1, 178 "storageRamNums":1, 179 "storageRomNums":5, 180 "storageTime" : -1, 181 "owner":[], 182 "source" : 0, 183 "db_table": "risk_event" 184 }, 185 { 186 "eventId":"1011009113", 187 "eventName":"XPM integrity", 188 "version":0, 189 "eventType":0, 190 "dataSensitivityLevel":1, 191 "storageRamNums":1, 192 "storageRomNums":5, 193 "storageTime" : -1, 194 "owner":[], 195 "source" : 0, 196 "db_table": "risk_event" 197 }, 198 { 199 "eventId":"1011009200", 200 "eventName":"account anonymization", 201 "version":0, 202 "eventType":0, 203 "dataSensitivityLevel":1, 204 "storageRamNums":1, 205 "storageRomNums":5, 206 "storageTime" : -1, 207 "owner":["3001000004"], 208 "source" : 2, 209 "db_table": "risk_event" 210 }, 211 { 212 "eventId":"1011009201", 213 "eventName":"root scan result", 214 "version":0, 215 "eventType":0, 216 "dataSensitivityLevel":1, 217 "storageRamNums":1, 218 "storageRomNums":5, 219 "storageTime" : -1, 220 "owner":["3001000004"], 221 "source" : 2, 222 "db_table": "risk_event" 223 }, 224 { 225 "eventId":"1011009202", 226 "eventName":"physical machine detection result", 227 "version":0, 228 "eventType":0, 229 "dataSensitivityLevel":1, 230 "storageRamNums":1, 231 "storageRomNums":5, 232 "storageTime" : -1, 233 "owner":["3001000004"], 234 "source" : 2, 235 "db_table": "risk_event" 236 }, 237 { 238 "eventId":"1011009203", 239 "eventName":"device completeness result", 240 "version":0, 241 "eventType":0, 242 "dataSensitivityLevel":1, 243 "storageRamNums":1, 244 "storageRomNums":5, 245 "storageTime" : -1, 246 "owner":["3001000004"], 247 "source" : 2, 248 "db_table": "risk_event" 249 }, 250 { 251 "eventId":"1011015000", 252 "eventName":"pasteboard", 253 "version":0, 254 "eventType":0, 255 "dataSensitivityLevel":1, 256 "storageRamNums":1, 257 "storageRomNums":100000, 258 "storageTime" : -1, 259 "owner":["3001000003"], 260 "source" : 2, 261 "db_table": "audit_event" 262 }, 263 { 264 "eventId":"1011015001", 265 "eventName":"account", 266 "version":0, 267 "eventType":0, 268 "dataSensitivityLevel":1, 269 "storageRamNums":1, 270 "storageRomNums":100000, 271 "storageTime" : -1, 272 "owner":["3001000003"], 273 "source" : 0, 274 "db_table": "audit_event" 275 }, 276 { 277 "eventId":"1011015002", 278 "eventName":"window", 279 "version":0, 280 "eventType":0, 281 "dataSensitivityLevel":1, 282 "storageRamNums":1, 283 "storageRomNums":100000, 284 "storageTime" : -1, 285 "owner":["3001000003"], 286 "source" : 0, 287 "db_table": "audit_event" 288 }, 289 { 290 "eventId":"1011015003", 291 "eventName":"volumn", 292 "version":0, 293 "eventType":0, 294 "dataSensitivityLevel":1, 295 "storageRamNums":1, 296 "storageRomNums":100000, 297 "storageTime" : -1, 298 "owner":["3001000003"], 299 "source" : 0, 300 "db_table": "audit_event" 301 }, 302 { 303 "eventId":"1011015004", 304 "eventName":"printer", 305 "version":0, 306 "eventType":0, 307 "dataSensitivityLevel":1, 308 "storageRamNums":1, 309 "storageRomNums":100000, 310 "storageTime" : -1, 311 "owner":["3001000003"], 312 "source" : 2, 313 "db_table": "audit_event" 314 }, 315 { 316 "eventId":"1011015005", 317 "eventName":"file", 318 "version":0, 319 "eventType":0, 320 "dataSensitivityLevel":1, 321 "storageRamNums":1, 322 "storageRomNums":100000, 323 "storageTime" : -1, 324 "owner":["3001000003"], 325 "source" : 0, 326 "db_table": "audit_event" 327 }, 328 { 329 "eventId":"1011015006", 330 "eventName":"process", 331 "version":0, 332 "eventType":0, 333 "dataSensitivityLevel":1, 334 "storageRamNums":1, 335 "storageRomNums":100000, 336 "storageTime" : -1, 337 "owner":["3001000003"], 338 "source" : 0, 339 "db_table": "audit_event" 340 }, 341 { 342 "eventId":"1011015007", 343 "eventName":"network", 344 "version":0, 345 "eventType":0, 346 "dataSensitivityLevel":1, 347 "storageRamNums":1, 348 "storageRomNums":100000, 349 "storageTime" : -1, 350 "owner":["3001000003"], 351 "source" : 0, 352 "db_table": "audit_event" 353 }, 354 { 355 "eventId":"1011015008", 356 "eventName":"file_guard", 357 "version":0, 358 "eventType":0, 359 "dataSensitivityLevel":1, 360 "storageRamNums":1, 361 "storageRomNums":100000, 362 "storageTime" : -1, 363 "owner":["3001000003"], 364 "source" : 0, 365 "db_table": "audit_event" 366 }, 367 { 368 "eventId":"1011015009", 369 "eventName":"camera", 370 "version":0, 371 "eventType":0, 372 "dataSensitivityLevel":1, 373 "storageRamNums":1, 374 "storageRomNums":100000, 375 "storageTime" : -1, 376 "owner":["3001000003"], 377 "source" : 0, 378 "db_table": "audit_event" 379 }, 380 { 381 "eventId":"1011015010", 382 "eventName":"application", 383 "version":0, 384 "eventType":0, 385 "dataSensitivityLevel":1, 386 "storageRamNums":1, 387 "storageRomNums":100000, 388 "storageTime" : -1, 389 "owner":["3001000003"], 390 "source" : 0, 391 "db_table": "audit_event" 392 }, 393 { 394 "eventId":"1011015011", 395 "eventName":"mouse", 396 "version":0, 397 "eventType":0, 398 "dataSensitivityLevel":1, 399 "storageRamNums":1, 400 "storageRomNums":100000, 401 "storageTime" : -1, 402 "owner":["3001000003"], 403 "source" : 0, 404 "db_table": "audit_event" 405 }, 406 { 407 "eventId":"1011015012", 408 "eventName":"keyboard", 409 "version":0, 410 "eventType":0, 411 "dataSensitivityLevel":1, 412 "storageRamNums":1, 413 "storageRomNums":100000, 414 "storageTime" : -1, 415 "owner":["3001000003"], 416 "source" : 0, 417 "db_table": "audit_event" 418 }, 419 { 420 "eventId":"1011015013", 421 "eventName":"edm", 422 "version":0, 423 "eventType":2, 424 "dataSensitivityLevel":1, 425 "storageRamNums":1, 426 "storageRomNums":100000, 427 "storageTime" : -1, 428 "owner":["3001000003"], 429 "source" : 0, 430 "db_table": "audit_event" 431 }, 432 { 433 "eventId":"1011015014", 434 "eventName":"cert", 435 "version":0, 436 "eventType":0, 437 "dataSensitivityLevel":1, 438 "storageRamNums":1, 439 "storageRomNums":100000, 440 "storageTime" : -1, 441 "owner":["3001000003"], 442 "source" : 0, 443 "db_table": "audit_event" 444 }, 445 { 446 "eventId":"1011015015", 447 "eventName":"file_guard_new_file", 448 "version":0, 449 "eventType":0, 450 "dataSensitivityLevel":1, 451 "storageRamNums":1, 452 "storageRomNums":100000, 453 "storageTime" : -1, 454 "owner":["3001000003"], 455 "source" : 0, 456 "db_table": "audit_event" 457 }, 458 { 459 "eventId":"1011015016", 460 "eventName":"file_guard_kia_variant", 461 "version":0, 462 "eventType":0, 463 "dataSensitivityLevel":1, 464 "storageRamNums":1, 465 "storageRomNums":100000, 466 "storageTime" : -1, 467 "owner":["3001000003"], 468 "source" : 0, 469 "db_table": "audit_event" 470 }, 471 { 472 "eventId":"1011016001", 473 "eventName":"application detection result", 474 "version":0, 475 "eventType":0, 476 "dataSensitivityLevel":1, 477 "storageRamNums":1, 478 "storageRomNums":5, 479 "storageTime" : -1, 480 "owner":[""], 481 "source" : 2, 482 "db_table": "risk_event" 483 }, 484 { 485 "eventId" : "1056001001", 486 "eventName" : "detect_container_escape", 487 "version" : 0, 488 "eventType" : 0, 489 "dataSensitivityLevel":1, 490 "storageRamNums" : 1, 491 "storageRomNums" : 5, 492 "storageTime" : -1, 493 "owner":[""], 494 "source" : 0, 495 "db_table": "risk_event" 496 }, 497 { 498 "eventId":"0x02B001004", 499 "eventName":"dns", 500 "version":0, 501 "eventType":0, 502 "dataSensitivityLevel":1, 503 "storageRamNums":1, 504 "storageRomNums":1000, 505 "storageTime" : -1, 506 "owner":[""], 507 "source" : 0, 508 "db_table": "risk_event" 509 }, 510 { 511 "eventId" : "1064001001", 512 "eventName" : "collect kernel message", 513 "version" : 0, 514 "eventType" : 1, 515 "dataSensitivityLevel":1, 516 "storageRamNums" : 1, 517 "storageRomNums" : 5, 518 "storageTime" : -1, 519 "owner":[""], 520 "source" : 0, 521 "db_table": "risk_event" 522 }, 523 { 524 "eventId":"0x818800800", 525 "eventName":"bundle_install", 526 "version":0, 527 "eventType":0, 528 "dataSensitivityLevel":1, 529 "storageRamNums":1, 530 "storageRomNums":50, 531 "storageTime" : -1, 532 "owner":[""], 533 "source" : 0, 534 "db_table": "risk_event" 535 }, 536 { 537 "eventId":"0x818800801", 538 "eventName":"bundle_update", 539 "version":0, 540 "eventType":0, 541 "dataSensitivityLevel":1, 542 "storageRamNums":1, 543 "storageRomNums":50, 544 "storageTime" : -1, 545 "owner":[""], 546 "source" : 0, 547 "db_table": "risk_event" 548 }, 549 { 550 "eventId":"0x027000001", 551 "eventName":"finish_oobe", 552 "version":0, 553 "eventType":0, 554 "dataSensitivityLevel":1, 555 "storageRamNums":1, 556 "storageRomNums":1, 557 "storageTime" : -1, 558 "owner":[""], 559 "source" : 0, 560 "db_table": "risk_event" 561 }, 562 { 563 "eventId":"0x12000000", 564 "eventName":"virus_detection", 565 "version":0, 566 "eventType":0, 567 "dataSensitivityLevel":1, 568 "storageRamNums":1, 569 "storageRomNums":5, 570 "storageTime" : -1, 571 "owner":[""], 572 "source" : 0, 573 "db_table": "risk_event" 574 }, 575 { 576 "eventId":"0x02B001000", 577 "eventName":"Malicious application detection result", 578 "version":0, 579 "eventType":0, 580 "dataSensitivityLevel":1, 581 "storageRamNums":1, 582 "storageRomNums":1000, 583 "storageTime" : -1, 584 "owner":[""], 585 "source" : 0, 586 "db_table": "risk_event" 587 }, 588 { 589 "eventId":"0x02B001001", 590 "eventName":"Process injection detection result", 591 "version":0, 592 "eventType":0, 593 "dataSensitivityLevel":1, 594 "storageRamNums":1, 595 "storageRomNums":1000, 596 "storageTime" : -1, 597 "owner":[""], 598 "source" : 0, 599 "db_table": "risk_event" 600 }, 601 { 602 "eventId":"0x02B001002", 603 "eventName":"Malicious file detection result", 604 "version":0, 605 "eventType":0, 606 "dataSensitivityLevel":1, 607 "storageRamNums":1, 608 "storageRomNums":1000, 609 "storageTime" : -1, 610 "owner":[""], 611 "source" : 0, 612 "db_table": "risk_event" 613 }, 614 { 615 "eventId":"0x02B001003", 616 "eventName":"Malicious DNS Detection Results", 617 "version":0, 618 "eventType":0, 619 "dataSensitivityLevel":1, 620 "storageRamNums":1, 621 "storageRomNums":100, 622 "storageTime" : -1, 623 "owner":[""], 624 "source" : 0, 625 "db_table": "risk_event" 626 }, 627 { 628 "eventId":"0x02B001006", 629 "eventName":"DNS Hash", 630 "version":0, 631 "eventType":0, 632 "dataSensitivityLevel":1, 633 "storageRamNums":1, 634 "storageRomNums":1000, 635 "storageTime" : -1, 636 "owner":[""], 637 "source" : 0, 638 "db_table": "risk_event" 639 }, 640 { 641 "eventId":"0x02B001005", 642 "eventName":"Malicious DNS Detection Results Hash", 643 "version":0, 644 "eventType":0, 645 "dataSensitivityLevel":1, 646 "storageRamNums":1, 647 "storageRomNums":100, 648 "storageTime" : -1, 649 "owner":[""], 650 "source" : 0, 651 "db_table": "risk_event" 652 }, 653 { 654 "eventId":"0x02C000000", 655 "eventName":"URL Detection Results", 656 "version":0, 657 "eventType":0, 658 "dataSensitivityLevel":1, 659 "storageRamNums":1, 660 "storageRomNums":300, 661 "storageTime" : -1, 662 "owner":[""], 663 "source" : 0, 664 "db_table": "risk_event" 665 }, 666 { 667 "eventId":"0x02B000000", 668 "eventName":"Time Event Related Analysis", 669 "version":0, 670 "eventType":0, 671 "dataSensitivityLevel":1, 672 "storageRamNums":1, 673 "storageRomNums":100, 674 "storageTime" : -1, 675 "owner":[""], 676 "source" : 2, 677 "db_table": "risk_event" 678 }, 679 { 680 "eventId":"0x017000000", 681 "eventName":"mdm_intra_upgrade", 682 "version":"1.0", 683 "eventType":0, 684 "dataSensitivityLevel":1, 685 "storageRamNums":1, 686 "storageRomNums":200, 687 "storageTime" : -1, 688 "owner":[""], 689 "source" : 0, 690 "db_table": "risk_event" 691 }, 692 { 693 "eventId":"0x01C000000", 694 "eventName":"uid_gid_zero", 695 "version":0, 696 "eventType":3, 697 "collectOnStart":1, 698 "prog":"security_guard", 699 "dataSensitivityLevel":1, 700 "storageRamNums":1, 701 "storageRomNums":10, 702 "storageTime" : -1, 703 "owner":[""], 704 "source" : 0, 705 "db_table": "risk_event" 706 }, 707 { 708 "eventId":"0x01C000001", 709 "eventName":"ptrace_attach", 710 "version":0, 711 "eventType":3, 712 "collectOnStart":1, 713 "prog":"security_guard", 714 "dataSensitivityLevel":1, 715 "storageRamNums":1, 716 "storageRomNums":10, 717 "storageTime" : -1, 718 "owner":[""], 719 "source" : 0, 720 "db_table": "risk_event" 721 }, 722 { 723 "eventId":"0x01C000002", 724 "eventName":"system_data_mount", 725 "version":0, 726 "eventType":3, 727 "collectOnStart":1, 728 "prog":"security_guard", 729 "dataSensitivityLevel":1, 730 "storageRamNums":1, 731 "storageRomNums":10, 732 "storageTime" : -1, 733 "owner":[""], 734 "source" : 0, 735 "db_table": "risk_event" 736 }, 737 { 738 "eventId":"0x01C000003", 739 "eventName":"coredump", 740 "version":0, 741 "eventType":3, 742 "collectOnStart":1, 743 "prog":"security_guard", 744 "dataSensitivityLevel":1, 745 "storageRamNums":1, 746 "storageRomNums":100 , 747 "storageTime" : -1, 748 "owner":[""], 749 "source" : 0, 750 "db_table": "risk_event" 751 }, 752 { 753 "eventId":"0x01C000004", 754 "eventName":"exit_exec_clone_events.", 755 "version":0, 756 "eventType":3, 757 "collectOnStart":1, 758 "prog":"security_guard", 759 "dataSensitivityLevel":1, 760 "storageRamNums":1, 761 "storageRomNums":5, 762 "storageTime" : -1, 763 "owner":[""], 764 "source" : 0, 765 "db_table": "risk_event" 766 }, 767 { 768 "eventId":"0x01C000005", 769 "eventName":"HKIP", 770 "version":0, 771 "eventType":3, 772 "collectOnStart":1, 773 "prog":"security_guard", 774 "dataSensitivityLevel":1, 775 "storageRamNums":1, 776 "storageRomNums":10, 777 "storageTime" : -1, 778 "owner":[""], 779 "source" : 0, 780 "db_table": "risk_event" 781 }, 782 { 783 "eventId":"0x01C000006", 784 "eventName":"kernel_panic_state", 785 "version":0, 786 "eventType":0, 787 "dataSensitivityLevel":1, 788 "storageRamNums":1, 789 "storageRomNums":10, 790 "storageTime" : -1, 791 "owner":[""], 792 "source" : 0, 793 "db_table": "risk_event" 794 }, 795 { 796 "eventId":"0x012001080", 797 "eventName":"EVENT_XPM_STATE", 798 "version":0, 799 "eventType":3, 800 "collectOnStart":1, 801 "prog":"security_guard", 802 "dataSensitivityLevel":1, 803 "storageRamNums":1, 804 "storageRomNums":200, 805 "storageTime" : -1, 806 "owner":[""], 807 "source" : 0, 808 "db_table": "risk_event" 809 }, 810 { 811 "eventId":"0x012001081", 812 "eventName":"EVENT_GET_SIGN_FAILED", 813 "version":0, 814 "eventType":3, 815 "collectOnStart":1, 816 "prog":"security_guard", 817 "dataSensitivityLevel":1, 818 "storageRamNums":1, 819 "storageRomNums":200, 820 "storageTime" : -1, 821 "owner":[""], 822 "source" : 0, 823 "db_table": "risk_event" 824 }, 825 { 826 "eventId":"0x012001082", 827 "eventName":"EVENT_SIGN_INVALID", 828 "version":0, 829 "eventType":3, 830 "collectOnStart":1, 831 "prog":"security_guard", 832 "dataSensitivityLevel":1, 833 "storageRamNums":1, 834 "storageRomNums":200, 835 "storageTime" : -1, 836 "owner":[""], 837 "source" : 0, 838 "db_table": "risk_event" 839 }, 840 { 841 "eventId":"0x012001083", 842 "eventName":"EVENT_FILE_FORMAT_UNDEF", 843 "version":0, 844 "eventType":3, 845 "collectOnStart":1, 846 "prog":"security_guard", 847 "dataSensitivityLevel":1, 848 "storageRamNums":1, 849 "storageRomNums":200, 850 "storageTime" : -1, 851 "owner":[""], 852 "source" : 0, 853 "db_table": "risk_event" 854 }, 855 { 856 "eventId":"0x012001084", 857 "eventName":"EVENT_DATA_MMAP_CODE", 858 "version":0, 859 "eventType":3, 860 "collectOnStart":1, 861 "prog":"security_guard", 862 "dataSensitivityLevel":1, 863 "storageRamNums":1, 864 "storageRomNums":200, 865 "storageTime" : -1, 866 "owner":[""], 867 "source" : 0, 868 "db_table": "risk_event" 869 }, 870 { 871 "eventId":"0x012001085", 872 "eventName":"EVENT_PAGE_CONTENT_TAMP", 873 "version":0, 874 "eventType":3, 875 "collectOnStart":1, 876 "prog":"security_guard", 877 "dataSensitivityLevel":1, 878 "storageRamNums":1, 879 "storageRomNums":200, 880 "storageTime" : -1, 881 "owner":[""], 882 "source" : 0, 883 "db_table": "risk_event" 884 }, 885 { 886 "eventId":"0x012001086", 887 "eventName":"EVENT_INTEGRITY_VIOLATED", 888 "version":0, 889 "eventType":3, 890 "collectOnStart":1, 891 "prog":"security_guard", 892 "dataSensitivityLevel":1, 893 "storageRamNums":1, 894 "storageRomNums":200, 895 "storageTime" : -1, 896 "owner":[""], 897 "source" : 0, 898 "db_table": "risk_event" 899 }, 900 { 901 "eventId":"0x012001087", 902 "eventName":"EVENT_OWNERID_INCONSISTENT", 903 "version":0, 904 "eventType":3, 905 "collectOnStart":1, 906 "prog":"security_guard", 907 "dataSensitivityLevel":1, 908 "storageRamNums":1, 909 "storageRomNums":200, 910 "storageTime" : -1, 911 "owner":[""], 912 "source" : 0, 913 "db_table": "risk_event" 914 }, 915 { 916 "eventId":"0x012001088", 917 "eventName":"EVENT_ANON_EXEC_PROHIBITED", 918 "version":0, 919 "eventType":3, 920 "collectOnStart":1, 921 "prog":"security_guard", 922 "dataSensitivityLevel":1, 923 "storageRamNums":1, 924 "storageRomNums":200, 925 "storageTime" : -1, 926 "owner":[""], 927 "source" : 0, 928 "db_table": "risk_event" 929 }, 930 { 931 "eventId":"0x012001089", 932 "eventName":"EVENT_SET_JIT_MEM_VIOLATION", 933 "version":0, 934 "eventType":3, 935 "collectOnStart":1, 936 "prog":"security_guard", 937 "dataSensitivityLevel":1, 938 "storageRamNums":1, 939 "storageRomNums":200, 940 "storageTime" : -1, 941 "owner":[""], 942 "source" : 0, 943 "db_table": "risk_event" 944 }, 945 { 946 "eventId":"0x01200108A", 947 "eventName":"EVENT_WRITE_JIT_MEM_VIOLATION", 948 "version":0, 949 "eventType":3, 950 "collectOnStart":1, 951 "prog":"security_guard", 952 "dataSensitivityLevel":1, 953 "storageRamNums":1, 954 "storageRomNums":200, 955 "storageTime" : -1, 956 "owner":[""], 957 "source" : 0, 958 "db_table": "risk_event" 959 }, 960 { 961 "eventId":"0x01200108B", 962 "eventName":"EVENT_UNAUTHED_CODE_EXEC", 963 "version":0, 964 "eventType":3, 965 "collectOnStart":1, 966 "prog":"security_guard", 967 "dataSensitivityLevel":1, 968 "storageRamNums":1, 969 "storageRomNums":200, 970 "storageTime" : -1, 971 "owner":[""], 972 "source" : 0, 973 "db_table": "risk_event" 974 }, 975 { 976 "eventId" : "0x01200100B", 977 "eventName" : "collect kernel sysrw message", 978 "version" : 0, 979 "eventType" : 1, 980 "prog":"security_guard", 981 "dataSensitivityLevel":1, 982 "storageRamNums" : 1, 983 "storageRomNums" : 5, 984 "storageTime" : -1, 985 "owner":[""], 986 "source" : 0, 987 "db_table": "risk_event" 988 }, 989 { 990 "eventId" : "0x01200100C", 991 "eventName" : "collect kernel kcode message", 992 "version" : 0, 993 "eventType" : 1, 994 "prog":"security_guard", 995 "dataSensitivityLevel":1, 996 "storageRamNums" : 1, 997 "storageRomNums" : 5, 998 "storageTime" : -1, 999 "owner":[""], 1000 "source" : 0, 1001 "db_table": "risk_event" 1002 }, 1003 { 1004 "eventId" : "0x01200100D", 1005 "eventName" : "collect kernel syscall message", 1006 "version" : 0, 1007 "eventType" : 1, 1008 "prog":"security_guard", 1009 "dataSensitivityLevel":1, 1010 "storageRamNums" : 1, 1011 "storageRomNums" : 5, 1012 "storageTime" : -1, 1013 "owner":[""], 1014 "source" : 0, 1015 "db_table": "risk_event" 1016 }, 1017 { 1018 "eventId" : "0x01200100F", 1019 "eventName" : "collect kernel rodata message", 1020 "version" : 0, 1021 "eventType" : 1, 1022 "prog":"security_guard", 1023 "dataSensitivityLevel":1, 1024 "storageRamNums" : 1, 1025 "storageRomNums" : 5, 1026 "storageTime" : -1, 1027 "owner":[""], 1028 "source" : 0, 1029 "db_table": "risk_event" 1030 }, 1031 { 1032 "eventId" : "0x012001015", 1033 "eventName" : "collect kernel seharmony message", 1034 "version" : 0, 1035 "eventType" : 1, 1036 "prog":"security_guard", 1037 "dataSensitivityLevel":1, 1038 "storageRamNums" : 1, 1039 "storageRomNums" : 5, 1040 "storageTime" : -1, 1041 "owner":[""], 1042 "source" : 0, 1043 "db_table": "risk_event" 1044 }, 1045 { 1046 "eventId":"0x012001000", 1047 "eventName":"su", 1048 "version":0, 1049 "eventType":1, 1050 "collectOnStart":0, 1051 "dataSensitivityLevel":1, 1052 "storageRamNums":1, 1053 "storageRomNums":200, 1054 "storageTime" : -1, 1055 "owner":[""], 1056 "source" : 0, 1057 "db_table": "risk_event" 1058 }, 1059 { 1060 "eventId":"0x012001001", 1061 "eventName":"root_param", 1062 "version":0, 1063 "eventType":1, 1064 "collectOnStart":0, 1065 "dataSensitivityLevel":1, 1066 "storageRamNums":1, 1067 "storageRomNums":200, 1068 "storageTime" : -1, 1069 "owner":[""], 1070 "source" : 0, 1071 "db_table": "risk_event" 1072 }, 1073 { 1074 "eventId":"0x012001002", 1075 "eventName":"hvb_state", 1076 "version":0, 1077 "eventType":1, 1078 "collectOnStart":0, 1079 "dataSensitivityLevel":1, 1080 "storageRamNums":1, 1081 "storageRomNums":200, 1082 "storageTime" : -1, 1083 "owner":[""], 1084 "source" : 0, 1085 "db_table": "risk_event" 1086 }, 1087 { 1088 "eventId":"0x012001003", 1089 "eventName":"verified_boot_state", 1090 "version":0, 1091 "eventType":1, 1092 "collectOnStart":0, 1093 "dataSensitivityLevel":1, 1094 "storageRamNums":1, 1095 "storageRomNums":200, 1096 "storageTime" : -1, 1097 "owner":[""], 1098 "source" : 0, 1099 "db_table": "risk_event" 1100 }, 1101 { 1102 "eventId":"0x012001004", 1103 "eventName":"vbmeta_device_state", 1104 "version":0, 1105 "eventType":1, 1106 "collectOnStart":0, 1107 "dataSensitivityLevel":1, 1108 "storageRamNums":1, 1109 "storageRomNums":200, 1110 "storageTime" : -1, 1111 "owner":[""], 1112 "source" : 0, 1113 "db_table": "risk_event" 1114 }, 1115 { 1116 "eventId":"0x012001005", 1117 "eventName":"device_model", 1118 "version":0, 1119 "eventType":1, 1120 "collectOnStart":0, 1121 "dataSensitivityLevel":1, 1122 "storageRamNums":1, 1123 "storageRomNums":200, 1124 "storageTime" : -1, 1125 "owner":[""], 1126 "source" : 0, 1127 "db_table": "risk_event" 1128 }, 1129 { 1130 "eventId":"0x012001006", 1131 "eventName":"activation_lock_state", 1132 "version":0, 1133 "eventType":1, 1134 "collectOnStart":0, 1135 "dataSensitivityLevel":1, 1136 "storageRamNums":1, 1137 "storageRomNums":200, 1138 "storageTime" : -1, 1139 "owner":[""], 1140 "source" : 0, 1141 "db_table": "risk_event" 1142 }, 1143 { 1144 "eventId":"0x012001007", 1145 "eventName":"physical_machine", 1146 "version":0, 1147 "eventType":1, 1148 "collectOnStart":0, 1149 "dataSensitivityLevel":1, 1150 "storageRamNums":1, 1151 "storageRomNums":200, 1152 "storageTime" : -1, 1153 "owner":[""], 1154 "source" : 0, 1155 "db_table": "risk_event" 1156 }, 1157 { 1158 "eventId":"0x012001008", 1159 "eventName":"developer_state", 1160 "version":0, 1161 "eventType":1, 1162 "collectOnStart":0, 1163 "dataSensitivityLevel":1, 1164 "storageRamNums":1, 1165 "storageRomNums":200, 1166 "storageTime" : -1, 1167 "owner":[""], 1168 "source" : 0, 1169 "db_table": "risk_event" 1170 }, 1171 { 1172 "eventId":"0x012001009", 1173 "eventName":"advsec_state", 1174 "version":0, 1175 "eventType":1, 1176 "collectOnStart":0, 1177 "dataSensitivityLevel":1, 1178 "storageRamNums":1, 1179 "storageRomNums":200, 1180 "storageTime" : -1, 1181 "owner":[""], 1182 "source" : 0, 1183 "db_table": "risk_event" 1184 }, 1185 { 1186 "eventId":"0x01200100A", 1187 "eventName":"auto_upgrade_state", 1188 "version":0, 1189 "eventType":1, 1190 "collectOnStart":0, 1191 "dataSensitivityLevel":1, 1192 "storageRamNums":1, 1193 "storageRomNums":200, 1194 "storageTime" : -1, 1195 "owner":[""], 1196 "source" : 0, 1197 "db_table": "risk_event" 1198 }, 1199 { 1200 "eventId":"0x012001020", 1201 "eventName":"ta_integrity_state", 1202 "version":0, 1203 "eventType":1, 1204 "collectOnStart":0, 1205 "dataSensitivityLevel":1, 1206 "storageRamNums":1, 1207 "storageRomNums":200, 1208 "storageTime" : -1, 1209 "owner":[""], 1210 "source" : 0, 1211 "db_table": "risk_event" 1212 }, 1213 { 1214 "eventId":"0x012001021", 1215 "eventName":"underlying_system_integrity_state", 1216 "version":0, 1217 "eventType":1, 1218 "collectOnStart":0, 1219 "dataSensitivityLevel":1, 1220 "storageRamNums":1, 1221 "storageRomNums":200, 1222 "storageTime" : -1, 1223 "owner":[""], 1224 "source" : 0, 1225 "db_table": "risk_event" 1226 }, 1227 { 1228 "eventId":"0x027000002", 1229 "eventName":"se_fault", 1230 "version":0, 1231 "eventType":0, 1232 "dataSensitivityLevel":1, 1233 "storageRamNums":1, 1234 "storageRomNums":100, 1235 "storageTime" : -1, 1236 "owner":[""], 1237 "source" : 0, 1238 "db_table": "risk_event" 1239 }, 1240 { 1241 "eventId":"0x027000003", 1242 "eventName":"se_security", 1243 "version":0, 1244 "eventType":0, 1245 "dataSensitivityLevel":1, 1246 "storageRamNums":1, 1247 "storageRomNums":100, 1248 "storageTime" : -1, 1249 "owner":[""], 1250 "source" : 0, 1251 "db_table": "risk_event" 1252 } 1253 ] 1254} 1255