Source and Source Types
The Tenable Add-on for Splunk stores data with the following sources and source types.
Tenable Security Center
| Source | Sourcetype | Description |
|---|---|---|
| <username>|<address> | tenable:sc:vuln | This collects all vulnerability data. |
| <username>|<address> | tenable:sc:assets | This collects pull assets data. |
| <username>|<address> | tenable:sc:plugin | This collects all plugin data. |
Tenable Vulnerability Management
| Source | Sourcetype | Description |
|---|---|---|
| tenable_io://<data input name> | tenable:io:vuln | This collects all host vulnerability data. |
| tenable_io://<data input name> | tenable:io:assets | This collects all host asset data. |
| tenable_io://<data input name> | tenable:io:plugin | This collects all plugin data. |