OCSF TA for Linux

Splunk Community
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

OCSF TA for Linux

OCSF TA for Linux
This TA provides you with the capability to search your events using OCSF compliant fields, as well as CIM to support your current use cases. This includes specifically Auditd for the moment, as this is the most important data source because it ties everything from your STIG/CIS to your security use cases in Linux.
Ask a Question View in Splunkbase
0 topics and 0 replies mentioned OCSF TA for Linux in
Latest Topics
No posts to display.
Latest Replies
No posts to display.
Top Topics
No posts to display.
My Topics
No posts to display.