Darktrace¶
Key facts¶
- MSG Format based filter
- Legacy BSD Format default port 514
Links¶
| Ref | Link |
|---|---|
| Splunk Add-on | None |
| Product Manual | unknown |
Sourcetypes¶
| sourcetype | notes |
|---|---|
| darktrace | none |
| darktrace:audit | none |
Sourcetype and Index Configuration¶
| key | sourcetype | index | notes |
|---|---|---|---|
| darktrace_syslog | darktrace | netids | None |
| darktrace_audit | darktrace_audit | netids | None |