Log notification formats - Cortex XSIAM provides you with different formats for its log notifications. - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

When Cortex XSIAM alerts and audit logs are forwarded to an external data source, notifications are sent according to the necessary format (syslog messages, email, or Slack notifications). If you prefer Cortex XSIAM to forward logs in legacy format, select the legacy option in your log forwarding configuration.