Source and Source Types
The Tenable Add-on for Splunk stores data with the following sources and source types.
Tenable.sc
Source | Sourcetype | Description |
---|---|---|
<username>|<address> | tenable:sc:vuln | This collects all vulnerability data. |
<username>|<address> | tenable:sc:assets | This collects pull assets data. |
<username>|<address> | tenable:sc:plugin | This collects all plugin data. |
Tenable.io
Source | Sourcetype | Description |
---|---|---|
tenable_io://<data input name> | tenable:io:vuln | This collects all host vulnerability data. |
tenable_io://<data input name> | tenable:io:assets | This collects all host asset data. |
tenable_io://<data input name> | tenable:io:plugin | This collects all plugin data. |