OCSF Mappings: System Process Events

May 15, 2026New Release

AlphaSOC now includes OCSF mappings for system process events, with full support for array fields — enabling Sigma rules that target process data from platforms such as CrowdStrike and SentinelOne.

Learn More

OCSF Schema
AlphaSOC: OCSF for Sigma