Skip to main content

vast limits GmbH and uberAgent are now part of Citrix, a business unit of Cloud Software Group. Learn more at Citrix.com.

Documentation

Version

  1. uberAgent
  2. 7.1.2
  3. Advanced Topics
  4. Demoing uberAgent With the Event Generator for Splunk
  5. uberAgent Event Generator Changelog

uberAgent Event Generator Changelog

In this article

Version 7.1

Release notes

  • Increased .NET version to 7.
  • Changed configuration file format to JSON.

Improvements

  • Log messages are written to stdout and a log file located in the %TEMP% (Windows) or /tmp (Linux) directory.
  • The fields SessionFgBrowserType, SessionFgBrowserType and SessionFgBrowserActiveTabHost of sourcetype uberAgent:Session:SessionDetail are now available on macOS, too.

New Sourcetypes

  • New sourcetype uberAgentESA:System:SecurityInventory with fields: SecurityInventoryCategory, SecurityInventoryName, SecurityInventoryScore, SecurityInventoryRiskScore, SecurityInventoryResultData, SecurityInventoryErrorCode, SecurityInventoryErrorMessage, SecurityInventoryScope, SecurityInventoryScopeEntity.

Updated Sourcetypes

  • Sourcetype [B287]: uberAgent:Process:ProcessStatistics has new field(s): ProcInputDelayMaxMs, ProcInputDelaySumMs and ProcInputDelayCount.
  • Sourcetype [B287]: uberAgent:Session:SessionDetail has new field(s): SessionInputDelayMaxMs, SessionInputDelaySumMs and SessionInputDelayCount.
  • Sourcetype [B751]: uberAgent:OnOffTransition:BootDetail2 has new field(s): UserLogonWaitDurationMs.
  • Sourcetype [B766]: uberAgentESA:Process:DnsQuery has new field(s): DnsRisk52Chars, DnsRisk27UniqueChars, DnsRiskEmptyResponse, DnsRiskTXTRecord, DnsRiskHighEntropy, DnsResponseStatus.

Comments

Your email address will not be published. Required fields are marked *