mirrors
/
msma
mirror of https://github.com/riverar/messageanalyzer-archive.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
msma/feed/Assets/Message_Analyzer/Message Analyzer Grouping V...

282 lines
9.2 KiB
Plaintext
Raw Blame History

<?xml version="1.0" encoding="utf-8"?>
<AssetCollection xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<Metadata>
<UniqueId>BEB42127-766C-4869-A615-3873E4179C09</UniqueId>
<GroupId>BEB42127-766C-4869-A615-3873E4179C09</GroupId>
<Name>Message Analyzer Grouping View Layouts</Name>
<AssetType>GroupingViewAsset</AssetType>
<VersionNumber>1</VersionNumber>
<Author>Message Analyzer</Author>
<Corporation>Microsoft</Corporation>
<PublishedDate>2013-09-01T00:00:00</PublishedDate>
<ModifiedDate>2015-04-14T00:00:00</ModifiedDate>
<Revision>17</Revision>
<Description>The official release of grouping layouts from the Message Analyzer Team. Download and sync this set to get periodic updates.</Description>
<Rating>0</Rating>
</Metadata>
<Assets>
<Asset>
<Metadata>
<UniqueId>A76770D6-D1F4-41DB-A687-A8F6DED817F1</UniqueId>
<Name>TCP Deep Packet Analysis</Name>
<Description>Groups by Source, Network, and Transport. Separates traffic by direction and displays TCP specific fields.</Description>
<Category>Network</Category>
<Properties />
</Metadata>
<Content xsi:type="GroupingViewAsset">
<GroupingsList>
<string>Network</string>
<string>Transport</string>
<string>SourcePort</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>C7659476-CC50-468F-AA14-DA572B22C456</UniqueId>
<Name>Protocol/Module Summary</Name>
<Description>Groups by Module and Type. Let's you explore data a high level. Also a good developer view.</Description>
<Category>Common</Category>
<Properties />
</Metadata>
<Content xsi:type="GroupingViewAsset">
<GroupingsList>
<string>Module</string>
<string>Type</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>6E7F24EF-F09B-4152-8C80-2F46C81464F1</UniqueId>
<Name>File Sharing SMB/SMB2</Name>
<Description>Organizes groupings by Session/Tree ID, and then by FileName</Description>
<Category>File Sharing</Category>
<Properties />
</Metadata>
<Content xsi:type="GroupingViewAsset">
<GroupingsList>
<string>SessionIdName</string>
<string>TreeIdName</string>
<string>FileName</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>3c106edc-3236-453d-850a-9b358bdd7c6d</UniqueId>
<Name>Network Address and Ports</Name>
<Description>Group data by Address and then by the UDP/TCP Ports.</Description>
<Category>Network</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>Network</string>
<string>Transport</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>AF9E4AC5-ED9D-4068-845B-EB735DCDBD51</UniqueId>
<Name>Process Name and Conversations</Name>
<Description>Groups by process name, process ID, network, and transport</Description>
<Category>Network</Category>
<Properties />
</Metadata>
<Content xsi:type="GroupingViewAsset">
<GroupingsList>
<string>ProcessName</string>
<string>ProcessId</string>
<string>Network</string>
<string>Transport</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>48ae08ab-47ad-4cef-82d6-d8c6221c7006</UniqueId>
<Name>IIS</Name>
<Description>Grouping for IIS by IP then Port</Description>
<Category>HTTP</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>c_ip</string>
<string>s_port</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>41ad60e0-75b6-4219-87a8-b90a93ebb61d</UniqueId>
<Name>Netlogon Group by Message Type</Name>
<Description>Groups by Netlogon msgtype values.</Description>
<Category>Netlogon</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>msgtype</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>527ceeee-cd98-4998-93a6-ce2c31725981</UniqueId>
<Name>Cluster Logs</Name>
<Description>Cluster Log Grouping on InfoLevel, SubComponent, then ProcessId</Description>
<Category>Cluster</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>InfoLevel</string>
<string>SubComponent</string>
<string>ProcessId</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>7c5e3699-3438-4636-a0f1-1ce4a77da728</UniqueId>
<Name>Event Viewer</Name>
<Description>Grouping for event viewer logs</Description>
<Category>Common</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>ProviderName</string>
<string>Level</string>
<string>Channel</string>
<string>EventID</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>682dc6cd-70dd-4890-97d5-f302652a8277</UniqueId>
<Name>Fiddler Grouping</Name>
<Description>Groups by Process and Host</Description>
<Category>HTTP</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>SessionFlags.x-processinfo</string>
<string>Uri.Host</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>4fbd3797-56d6-4b5d-afae-8edc731e875b</UniqueId>
<Name>SysLog</Name>
<Description>SysLog grouping layout based on Samba Sys Logs</Description>
<Category>File Sharing</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>level</string>
<string>function</string>
<string>source_file</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>15a8e05c-d3b4-4c13-bbbf-8a1de88d8b7a</UniqueId>
<Name>ETW Guids and IDs</Name>
<Description>Groups by GUIDs first, followed by IDs. Let's you discover which kinds of ETW messages exist.</Description>
<Category>Common</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>EventRecord.Header.ProviderId</string>
<string>EventRecord.Header.Descriptor.Id</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>41a1b231-4401-4378-a386-1d303c394235</UniqueId>
<Name>Perfmon Log (.blg)</Name>
<Description>Machine/Instance/Counter lets you filter the associate Chart or Analaysis Grid.</Description>
<Category>Common</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>Machine</string>
<string>Instance</string>
<string>Counter</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
<Asset>
<Metadata>
<UniqueId>906a45e0-0dac-4c9f-b056-5325ef33e2f9</UniqueId>
<Name>NTP Source</Name>
<Description>Groups by Source to easily find NTP conversations in a single direction.</Description>
<Category>Network</Category>
<Properties />
</Metadata>
<Content
xsi:type="GroupingViewAsset">
<MajorVersion>0</MajorVersion>
<MinorVersion>0</MinorVersion>
<GroupingsList>
<string>Source</string>
</GroupingsList>
</Content>
<Properties />
</Asset>
</Assets>
<Properties />
</AssetCollection>
Reference in New Issue View Git Blame Copy Permalink