Field changes report
Latest versus Splunk_TA_aws 7.6.0
Summary
- Sourcetypes with changes: 4
- Total deleted fields: 5
- Total modified fields: 14
- Total new fields: 25
Detailed changes
aws:cloudtrail
| Field |
Deleted |
Modified |
New |
Is CIM |
| action |
❌ |
✅ |
✅ |
✅ |
| change_type |
❌ |
✅ |
✅ |
✅ |
| eventtype |
❌ |
✅ |
✅ |
✅ |
| object |
❌ |
✅ |
✅ |
✅ |
| object_attrs |
❌ |
❌ |
✅ |
✅ |
| object_category |
❌ |
✅ |
❌ |
✅ |
| object_id |
✅ |
✅ |
✅ |
✅ |
| object_path |
❌ |
❌ |
✅ |
✅ |
| result |
❌ |
❌ |
✅ |
✅ |
| src_user |
❌ |
❌ |
✅ |
✅ |
| src_user_id |
❌ |
❌ |
✅ |
✅ |
| src_user_name |
❌ |
❌ |
✅ |
✅ |
| src_user_type |
❌ |
❌ |
✅ |
✅ |
| status |
❌ |
❌ |
✅ |
✅ |
| tag |
❌ |
✅ |
✅ |
✅ |
| tag::eventtype |
❌ |
✅ |
✅ |
❌ |
| user |
❌ |
✅ |
✅ |
✅ |
| user_name |
✅ |
✅ |
❌ |
✅ |
| user_type |
❌ |
❌ |
✅ |
✅ |
aws:cloudwatch:guardduty
| Field |
Deleted |
Modified |
New |
Is CIM |
| dest_ip |
❌ |
❌ |
✅ |
✅ |
| dest_name |
✅ |
❌ |
❌ |
✅ |
| src_ip |
✅ |
❌ |
❌ |
✅ |
| src_name |
❌ |
❌ |
✅ |
❌ |
aws:cloudwatchlogs:vpcflow
| Field |
Deleted |
Modified |
New |
Is CIM |
| region |
✅ |
✅ |
❌ |
❌ |
aws:elb:accesslogs
| Field |
Deleted |
Modified |
New |
Is CIM |
| ClientSrcIP |
❌ |
❌ |
✅ |
❌ |
| ClientSrcPort |
❌ |
❌ |
✅ |
❌ |
| RequestTargetIP |
❌ |
❌ |
✅ |
❌ |
| RequestTargetPort |
❌ |
❌ |
✅ |
❌ |
| dest |
❌ |
❌ |
✅ |
✅ |
| dest_port |
❌ |
❌ |
✅ |
✅ |
| src |
❌ |
✅ |
❌ |
✅ |
| src_ip |
❌ |
✅ |
❌ |
✅ |
| src_port |
❌ |
✅ |
❌ |
✅ |