Data Source: ASL AWS CloudTrail

Date: 2025-01-23

ID: 1dcf9cfb-0e91-44c6-81b3-61b2574ec898

Author: Patrick Bareiss, Splunk

Description

Represents AWS API dataset data collection from Amazon Security Lake.

Details

Property	Value
Source	`aws_asl`
Sourcetype	`aws:asl`
Separator	api.operation

Supported Apps

Splunk Add-on for AWS (version 8.0.0)

Required Output Fields

dest
user
user_agent
src
vendor_account
vendor_region
vendor_product

Source: GitHub | Version: 2