All Apps and Add-ons

Output Additional Sourcefire fields (Reference)

sparrowe
Explorer

Has anyone been able to successfully modify which fields are exported from the eStreamer interface? I am specifically wanting to output the "Reference" field which sometimes contains a list of applicable CVE's.

0 Karma
Get Updates on the Splunk Community!

New Learning Videos on Topics Most Requested by You! Plus This Month’s New Splunk ...

Splunk Lantern is a customer success center that provides advice from Splunk experts on valuable data ...

How I Instrumented a Rust Application Without Knowing Rust

As a technical writer, I often have to edit or create code snippets for Splunk's distributions of ...

Splunk Community Platform Survey

Hey Splunk Community, Starting today, the community platform may prompt you to participate in a survey. The ...