Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint security with Splunk's extensive investigation and visualization capabilities to deliver an advanced security reporting and analysis tool.
Malware_Attacks | date | string | The date of the malware event.
There is a field named "generated_time" In events with source type pan:threat_traps, it will be great if you create a date field from generated_time field infomation.
Hi,
CIM malware model has a date field :
Malware_Attacks | date | string | The date of the malware event.
There is a field named "generated_time" In events with source type pan:threat_traps, it will be great if you create a date field from generated_time field infomation.
Best regards,