Splunk Search

Tenable Add-On for Splunk- How can I filter the results based on the scan name?

osasfrancis
Path Finder

For the latest version, Version 5.2.4, I have vulnerability data coming in from Tenable.SC. How can I filter the results based on the scan name? Cannot seem to figure it out. I remember in previous versions, we could leverage scan_result_info.name, but not in this latest version.

Any thoughts is appreciated.

Thanks

Labels (1)
0 Karma

osasfrancis
Path Finder

I am using Version 5.2.4. Yes, the field does not exist on this version, but it once did on older versions. Just cannot filter data based on scan name.

0 Karma

etoombs
Path Finder

I've never seen this field. Which version of the Tenable Add-On are you using? What version of Tenable.sc?

0 Karma

osasfrancis
Path Finder

I am using Version 5.2.4. Yes, the field does not exist on this version, but it once did on older versions. Just cannot filter data based on scan name.

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In November, the Splunk Threat Research Team had one release of new security content via the Enterprise ...

Index This | Divide 100 by half. What do you get?

November 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this ...

Stay Connected: Your Guide to December Tech Talks, Office Hours, and Webinars!

❄️ Celebrate the season with our December lineup of Community Office Hours, Tech Talks, and Webinars! ...