All Apps and Add-ons

Output Additional Sourcefire fields (Reference)

sparrowe
Explorer

Has anyone been able to successfully modify which fields are exported from the eStreamer interface? I am specifically wanting to output the "Reference" field which sometimes contains a list of applicable CVE's.

0 Karma
Get Updates on the Splunk Community!

Your Guide to SPL2 at .conf24!

So, you’re headed to .conf24? You’re in for a good time. Las Vegas weather is just *chef’s kiss* beautiful in ...

Get ready to show some Splunk Certification swagger at .conf24!

Dive into the deep end of data by earning a Splunk Certification at .conf24. We're enticing you again this ...

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Now On-Demand Join us to learn more about how you can leverage Service Level Objectives (SLOs) and the new ...