SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Resolved! Vulnerability Assignment Rule Logic and Execution Order

Hi There, Just wanting some clarity around how vulnerability assignment rules are applied when a new VI is created. We currently have a few hundred vulnerability assignment rules configured because each technology type have different requirements for...

Nicole Allen by Kilo Contributor
  • 3173 Views
  • 8 replies
  • 4 helpfuls

Remediation Target Rules

So, my vuln analysts are wondering if there is any way to have the remediation target use a base of when a VIT is assigned to a service now group.  The reason being that the remediation teams are complaining because as certain items get assigned (lik...

jslee102 by Tera Contributor
  • 336 Views
  • 3 replies
  • 0 helpfuls

Report pulling

Hi,I have to pull a report with records close to 2 million from VIT table with 8 million active records.How to achieve it, I have a brief Idea about the pagination concept, can someone explain in detail about this. Or any other solution which doesn't...

What happens to open detections when a VIT is closed

Hello Everyone,We encountered a situation where a VIT was closed with the reason field as "invalid". The worknotes mention the following:Additional Information: Closed because of CIs do not matchClosed by: SecCommon SystemClosed VIT (VITXXXXXXX) and ...

Splunk Enterprise Event ingestion for Security Operation plugin COST

HI Community!I want to install the Splunk Enterprise Event ingestion for Security Operation plugin, but i want to make sure that this plugin does not have costI saw that I can install in the production instance but...Do you know if this plugin have c...

AB6 by Tera Contributor
  • 254 Views
  • 1 replies
  • 0 helpfuls