Splunk Dev
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Virustotal Splunk Cloud error

sumanssah
Communicator
‎06-06-2017 06:40 AM

Getting error while performing below mentioned search

_ index=symantec sourcetype=sep12:risk NOT actual_action= "Details pending" dest_nt_host=* | table dest hash_value | vt field="hash_value"_

Search Factory: Unknown search command 'vt'.

0 Karma
Reply

sumanssah
Communicator
‎02-29-2020 08:42 PM

Check if you have required app installed on Splunk Cloud search-head, looks you are referring to

VirusTotal Malware Lookup for Splunk: https://splunkbase.splunk.com/app/4283

If not, raise a request for Splunk support for app installation.

0 Karma
Reply

Bloodnite
Path Finder
‎08-31-2017 02:17 PM

you likely need to set the commands.conf value to point to the app's python file, or you're not searching within the app

0 Karma
Reply
Get Updates on the Splunk Community!

Buttercup Games Tutorial Extension - part 9

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Buttercup Games Tutorial Extension - part 8

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Introducing the Splunk Developer Program!

Hey Splunk community! We are excited to announce that Splunk is launching the Splunk Developer Program in ...
Top