CSE Schema
This guide has information about Cloud SIEM Enterprise (CSE) schemas. In this section, we'll introduce the following concepts:

Record Processing Pipeline
Learn how CSE transforms incoming raw messages into Records.

CSE Schema Attributes
Learn about CSE schema attributes.

Mappable Attributes
Learn what CSE schema attributes you can map to Records.

Record Types
Learn about the Record types to which you can map schema attributes.

Parsing Language Reference
Parsing is the first step in the CSE Record processing pipeline.

Log Mapping
Learn how to create a log mapping for structured messages.

Normalized Classification
Set up schema fields with an enforced, CSE-defined output.

Field Mappings
Set up field mappings for messages that you want to be processed by CSE's normalized threat rules.

Parser Editor
Learn how to use the Parser Editor to configure and test a custom parser.

Username and Hostname Normalization
Learn how to import YARA rules from GitHub into CSE.

Parser Troubleshooting
Learn how to troubleshoot problems with parsers.