All Apps and Add-ons

Splunk for Asset Discovery: Why am I Receiving out of date data?

harry056
New Member

Hello,

I have installed Splunk discovery app and set the nmap command as

C:\Program Files\Splunk\etc\apps\asset_discovery\bin\nmap.cmd  -A -O -t 172.17.0.0/16  10.2.237.0/24

I am getting data for 2017, not current data 29-09-2019.

Please do needful
Thanks
Lalit

Labels (1)
0 Karma

diogofgm
SplunkTrust
SplunkTrust

You are missing a -t before the 2nd CIDR notation

Also check the date on you splunk box

------------
Hope I was able to help you. If so, some karma would be appreciated.
0 Karma

harry056
New Member

data is 2019 ,

Please help me , how to do
Notes on the Windows scripted input, nmap.cmd (which calls nmap.vbs): You must create the file bin\nmap.path which contains the full path to your nmap.exe (i.e. C:\Program Files\Nmap\nmap.exe)

not getting how to do this

Thanks
Lalit

0 Karma

harry056
New Member

Please help

0 Karma

RMcCurdyDOTcom
Explorer

I used XtremeNmapParser to convert the xml to JSON and then used HEC to send it all to Spunk!

https://github.com/xtormin/XtremeNmapParser/issues/1 Z

0 Karma
Get Updates on the Splunk Community!

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

Splunk is officially part of Cisco

Revolutionizing how our customers build resilience across their entire digital footprint.   Splunk ...

Splunk APM & RUM | Planned Maintenance March 26 - March 28, 2024

There will be planned maintenance for Splunk APM and RUM between March 26, 2024 and March 28, 2024 as ...