Source and Source Types

The Tenable Add-on for Splunk stores data with the following sources and source types.

Tenable Web App Scanning

Source Source type Description
<username>|<address> tenable:io:vuln:was This collects all vulnerability data.

Tenable Security Center

Source Source type Description
<username>|<address> tenable:sc:vuln Collects cumulative vulnerability and compliance data from active and agent scans.
<username>|<address> tenable:sc:assets Collects all assets data.
<username>|<address> tenable:sc:plugin Collects all plugin detail data.

Tenable Vulnerability Management

Source Source type Description
tenable_io://<data input name> tenable:io:vuln Collects cumulative vulnerability data from active, agent and frictionless assessment scans from licensed assets.
tenable_io://<data input name> tenable:io:assets Collects all assets data.
tenable_io://<data input name> tenable:io:plugin Collects all plugin detail data.