Source* and Source_System*

For each incoming alert, BigPanda records the name of the integrated tool as part of the alert data. Source_System is a particularly useful tag for creating environments, searching incidents, and creating reports.

📘

Unique Reserved Word

source, _source, and source_system are reserved system words within BigPanda and cannot be used as the name of a custom tag, or defined as part of the API payload. BigPanda will automatically calculate source and source_system values based on the name of the sending system in the <source type>.<integration name> format.

source_system is a unique reserved word - it can be used as a filter condition when creating correlation patterns, other custom tags, and unified searches.