All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Qualys Technology Add-on: How do I add "scan type" field from XML to CSV?

alikapucu
Explorer
‎09-12-2018 11:19 AM

Can you guys add field for qids if they are authenticated or not?

We are trying to split scan based on authenticated or not.

This Qualys Technology Add-on is pulling knowledge base from Qualys Cloud and parsing this XML file to CSV so we can use as a lookup table.

The new XML version provided by Qualys has a field for "scan type" . Some of the vulnerabilities show up when you scan remoetly and some of them are only available if you do an authenticated scan.

What i need from developer and anyone here is the answer to the following question: How can i add this extra field from XML to CSV.

Thanks

0 Karma
Reply
Get Updates on the Splunk Community!

Detecting Brute Force Account Takeover Fraud with Splunk

This article is the second in a three-part series exploring advanced fraud detection techniques using Splunk. ...

Buttercup Games: Further Dashboarding Techniques (Part 9)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Buttercup Games: Further Dashboarding Techniques (Part 8)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...
Top