Thank you for raising this question.
For Nessus TA:
Nessus TA (Splunk Add-on for Tenable) is designed to map CIM:Vulnerabilities and CIM:All_Inventory.OS. We have not mapped 'path' and 'mac', as these two CIM models have no 'path' or 'mac' field. (field ‘mac’ belong to CIM:All_Inventory.Network instead of CIM:All_Inventory.OS). Please feel free to let us know what data model you think should be mapped other than these two designed ones.
CIM has field like 'file_path', 'object_path', but it has no field named 'path'. CIM’s documentation can be found on page: http://docs.splunk.com/Documentation/CIM/4.6.0/User/
For general:
We will have an overview of other TAs and their CIM compliance. Do you have any other TAs that you find are not CIM compliant? We will have a further check on these TAs.
... View more