sysmon-splunk-app icon indicating copy to clipboard operation
sysmon-splunk-app copied to clipboard

Published 20 hours ago verified publisher icon MHaggis

use Computer or ComputerName

Open smithj-xilinx opened this issue 6 years ago • 0 comments

Dashboard Splunk App Sysmon App for Splunk sysmon-splunk-app 2.0.0 App(3544) on the Status dashboard runs a query sysmon | stats count by Computer | sort - count While the TA TA-microsoft-sysmon 8.0.0 (app1914) returns the field ComputerName (So dashboard doesnot return anything in the search)

could the splunk search be changed many thanks

smithj-xilinx avatar Nov 22 '18 17:11 smithj-xilinx