https://community.splunk.com/t5/Splunk-Enterprise-Security/OSSEC-App-and-the-Common-Information-Model/m-p/159699#M654 <P>There's a TA for it in Enterprise Security -- getting that onto Apps is on the to-do list. Note that this is a long list and timing is TBD.</P> Sat, 10 May 2014 15:36:03 GMT jcoates_splunk 2014-05-10T15:36:03Z https://community.splunk.com/t5/Splunk-Enterprise-Security/OSSEC-App-and-the-Common-Information-Model/m-p/159698#M653 <P>I am a fan on the OSSEC app, however to make proper use of it in my eyes it needs to be integrated with the Common Information Model.</P> <P>Has anybody already integrated the OSSEC appp with Common Information Model i.e. field extractions and tags etc.</P> <P>Thanks</P> Sat, 10 May 2014 11:17:24 GMT https://community.splunk.com/t5/Splunk-Enterprise-Security/OSSEC-App-and-the-Common-Information-Model/m-p/159698#M653 j666gak 2014-05-10T11:17:24Z https://community.splunk.com/t5/Splunk-Enterprise-Security/OSSEC-App-and-the-Common-Information-Model/m-p/159699#M654 <P>There's a TA for it in Enterprise Security -- getting that onto Apps is on the to-do list. Note that this is a long list and timing is TBD.</P> Sat, 10 May 2014 15:36:03 GMT https://community.splunk.com/t5/Splunk-Enterprise-Security/OSSEC-App-and-the-Common-Information-Model/m-p/159699#M654 jcoates_splunk 2014-05-10T15:36:03Z