execution aggregate NXQL (classic)

number_of_devices

integer

Windows | macOS

FP

Number of devices

number_of_users

integer

Windows | macOS

FP

Number of users

number_of_applications

integer

Windows | macOS

FP

Number of applications

number_of_executables

integer

Windows | macOS

FP

Number of executables

number_of_binaries

integer

Windows | macOS

FP

Number of binaries

number_of_executions

integer

Windows | macOS

Number of executions

cumulated_execution_duration

millisecond

Windows | macOS

NU

Cumulated duration of executions

activity_start_time

datetime

Windows | macOS

NU

Start time of investigated activity

activity_stop_time

datetime

Windows | macOS

NU

Stop time of investigated activity

incoming_traffic

byte

Windows | macOS

NU

Total network incoming traffic

outgoing_traffic

byte

Windows | macOS

NU

Total network outgoing traffic

highest_local_privilege_reached

privileges_level

Windows | macOS

NU

Highest local privilege level reached for executions (user, power user, administrator)

number_of_events

integer

Windows | macOS

NU

Number of events

average_memory_usage_per_execution

byte

Windows | macOS

NU

Average memory usage per execution

memory_usage

byte

Windows | macOS

NU

Memory usage

focus_time

millisecond

Windows | macOS

NU

Focus time

cpu_usage_ratio

permill

Windows | macOS

NU

Average CPU usage

total_cpu_time

millisecond

Windows | macOS

NU

Total CPU time

average_process_start_time

millisecond

Windows

NU

Average process start time

incoming_network_traffic_per_device

byte

Windows | macOS

NU

Device average incoming network traffic

outgoing_network_traffic_per_device

byte

Windows | macOS

NU

Device average outgoing network traffic

total_network_traffic

byte

Windows | macOS

NU

Network traffic