I have used Trend Micro Deep Security for Splunk to parsing log from Trend Micro DeepSecurity.
Link App : https://splunkbase.splunk.com/app/1936/#/overview
Base on installation guide, i have configured sourcetype deepsecurity when i forward this log from Heavy Forwarder.
But i didn't see other sourcetypes which have been parsing base on this app (same as sourcetype deepsecurity-antimalware, sourcetype deepsecurity-log_inspection, ...)
Have anyone used this app before can help me to install it ?
Thanks for your concern !