Simon Sigré
Simon Sigré
The fix also worked for me> sub _getpid { my $arg = $_[0] ? "-p '$_[0]'" : '-e'; # This appears to be the most portable option. # Kind of...
@apetrichkovich those are not domains.. they are email addresses. The first domain (`aegde.com`) already appears to be part of the list.. and the rest appear to have pretty neutral reputations;...
Canned merge due to alpha sort requirement .. will redo later
There is a possibility that the Applipedia site may be tricked into handing it all over ;) Maybe PAN could offer an API into Applipedia so customers can stay up-to-date....
@macycron I believe what you are referring to is https://github.com/PaloAltoNetworks/Splunk_TA_paloalto/issues/42
Is this a duplicate of https://github.com/PaloAltoNetworks/Splunk-Apps/issues/116 ?
We where able to apply this pretty easily via; Field Alias: ``` pan:system : FIELDALIAS-src_for_pan_system src_ip --> src ``` Field Alias: ``` pan:system : FIELDALIAS-app_for_pan_system log_subtype --> app ``` Lookup...
I don't think this is a great idea because as you mentioned this is majoirty already collected as part of the WinEvenLogs, it could however (based on volume) push the...
Is this also somewhat linked to https://github.com/PaloAltoNetworks/Splunk_TA_paloalto/issues/42
Nice work @linsmeyerh, great fix