Source and Source Types

The Tenable Add-on for Splunk stores data with the following sources and source types.

Tenable Security Center

Source Sourcetype Description
<username>|<address> tenable:sc:vuln This collects all vulnerability data.
<username>|<address> tenable:sc:assets This collects pull assets data.
<username>|<address> tenable:sc:plugin This collects all plugin data.

Tenable Vulnerability Management

Source Sourcetype Description
tenable_io://<data input name> tenable:io:vuln This collects all host vulnerability data.
tenable_io://<data input name> tenable:io:assets This collects all host asset data.
tenable_io://<data input name> tenable:io:plugin This collects all plugin data.