All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Splunk And Tenable Nessus

katy27
New Member
‎05-15-2018 01:32 AM

why I am not getting any search results for sourcetype=nessus:plugin and nessus:scan
I had configured all correctly but no data appears in my search.

Tags (2)
0 Karma
Reply

xpac
SplunkTrust
SplunkTrust
‎05-15-2018 05:40 AM

Your question is lacking a lot of details, but a possible approach could go like this:

  • Create a new index
  • Setup your input to send it's data to that index
  • Wait some time
  • In the Indexes settings page, check if there are any events in that index.

If yes - you can just search that new index. If not, something has gone wrong with the input itself.

Hope that helps - if it does I'd be happy if you would upvote/accept this answer, so others could profit from it. 🙂

0 Karma
Reply

katy27
New Member
‎05-17-2018 02:35 AM

Thanks for your answer,
i'd done all what you have mentioned and i follow the tenable Splunk guide :

https://docs.tenable.com/other/Integration_Guide-Splunk.pdf

Moreover, all the scans in my Nessus scanner are not getting in my Splunk.
I'd be very thankful if you have an recommendation regarding this issue.

0 Karma
Reply
Get Updates on the Splunk Community!

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...

Splunk Decoded: Business Transactions vs Business IQ

It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...

Fastest way to demo Observability

I’ve been having a lot of fun learning about Kubernetes and Observability. I set myself an interesting ...