Recently installed Virustotal app on my splunk https://splunkbase.splunk.com/app/4283/ COmpleted initial app setup with VT token When i come back to search and execute | virustotal command i receive below error "VirusTotal Command: No field specified for matching. Specify one of 'hash=', 'ip=', 'url=', or 'domain=' and try again."
I modify my search query as | virustotal ip="8.8.8.8" received error Illegal value: ip=8.8.8.8
Some background information - Version of VirusTotal TA you're using - 2.0.0 - Whether the Splunk instance you installed it on is Splunk Cloud or on-premises- on-prem - Version of Splunk - 7.3.4 - Type of Splunk instance (e.g. Search Head, Indexer, Heavy Forwarder, All-In-One) - Search Head - Does your environment require a proxy to call out to the internet - Yes
Could some advice how this can be resolved ?
... View more