Reference Documentation
Comprehensive reference materials for developers, administrators, and power users. This section provides detailed technical specifications, API documentation, and syntax references.
Core References
Complete reference for Secure60’s powerful query language including operators, functions, field references, and advanced search techniques.
Includes:
- Field-specific search operators
- Time range and date functions
- Aggregation and statistical functions
- Regular expression syntax
- Boolean logic and grouping
- Performance optimization tips
Fundamental concepts and terminology used throughout the Secure60 platform. Essential reading for understanding how different components work together.
Core Concepts:
- Events, Signals, Entities, and Threats
- Data normalization and enrichment
- Entity behavior modeling
- Rule correlation and processing
- Data retention and lifecycle
Detailed specification of Secure60’s data schema, field mappings, and normalization standards for consistent data representation across all sources.
Schema Documentation:
- Standard field definitions
- Data type specifications
- Source-specific mappings
- Custom field guidelines
- Schema evolution and versioning
Complete API reference including authentication, endpoints, request/response formats, and integration examples for programmatic access to platform capabilities.
API Documentation:
- Authentication and authorization
- REST API endpoints
- WebSocket streaming interfaces
- Rate limiting and quotas
- SDK and client libraries
- Integration examples
Advanced References
Guidelines for implementing custom data tagging and classification systems to organize and categorize your data effectively.
Reference for creating and managing various types of lists including allowlists, blocklists, threat indicators, and custom reference data.
Technical Specifications
- JSON Schema - Complete event schema definitions
- Field Mappings - Source-to-schema field mappings
- Data Types - Supported data types and formats
- Encoding Standards - Character encoding and data representation
Integration Specifications
- Collector Protocols - Data collection protocol specifications
- External APIs - Third-party integration requirements
- Export Formats - Data export format specifications
- Authentication Methods - Supported authentication protocols
Configuration References
System Configuration
- Platform Settings - Core platform configuration options
- Performance Tuning - Optimization parameters and guidelines
- Security Settings - Security configuration best practices
- Backup and Recovery - Data protection configuration
Rule Configuration
- Rule Syntax - Detection rule syntax and structure
- Response Actions - Automated response configuration
- Correlation Logic - Multi-event correlation patterns
- Performance Optimization - Rule efficiency guidelines
Troubleshooting References
Error Codes and Messages
- System Errors - Platform-level error codes and resolution
- Data Processing Errors - Ingestion and parsing error handling
- Query Errors - Search and query error troubleshooting
- Integration Errors - Common integration issues and solutions
Log Analysis
- System Logs - Platform log file locations and analysis
- Performance Metrics - Key performance indicators and monitoring
- Diagnostic Tools - Built-in diagnostic and troubleshooting tools
Version History
Release Notes
- Feature Changes - New features and enhancements by version
- Breaking Changes - Compatibility considerations for upgrades
- Bug Fixes - Resolved issues and improvements
- Migration Guides - Version upgrade procedures
Deprecation Notices
- Deprecated Features - Features planned for removal
- Migration Timelines - Sunset schedules and alternatives
- Compatibility Matrix - Version compatibility information
For implementation guidance and tutorials, visit our Guides section.
Back to top