Good morning
I have a problem, when normalizing information related to a checkpoint, I find that I have a sourcetype: opsec:anti_malware but I manage to identify which ones are allowed / blocked / dererred, I install the Splunk Add-on for Check Point OPSEC LEA, Has anyone had the same problem ?