Hi All,
I need to understand below AQL query,
"SELECT "UrlHost" AS orig_value, domaintools::tldextract("UrlHost") AS domain_name ,REFERENCEMAP('dt_fqdn_to_domain',domain_name) AS domain FROM events WHERE "UrlHost" IS NOT NULL AND domain_name != '' AND domain_name!=domain AND LOGSOURCENAME(logsourceid) = 'WebProxy @ 127.0.0.1' LAST 5 MINUTES"
Regards
Asif Siddiqui
------------------------------
asif siddiqui
------------------------------