Skip to main content

Documentation

Version

  1. uberAgent
  2. 6.2.3
  3. Advanced Topics
  4. Demoing uberAgent With the Event Generator for Splunk
  5. uberAgent Event Generator Changelog
Previous document Next document

uberAgent Event Generator Changelog

In this article

Version 6.2.0

Updated Sourcetypes

  • Sourcetype: uberAgent:Application:NetworkConnectFailure has new field(s): NetTargetSourcePort.
  • Sourcetype: uberAgent:Process:NetworkTargetPerformance has new field(s): NetTargetSourcePort.

Version 6.1.1.4416

Improvements

  • Improved number of sent events during session lifetime.
  • Improved values in Application Performance dashboard.

Bugfixes

  • Added chmod call to “StartEventgen.cmd”.

Version 6.1.1

Improvements

  • Added some more hardware models.
  • Added ModuleName and ExceptionCode to the sourcetype uberAgent:Application:Errors (applications crashes).
  • Generated outliers for Process DNS.

Updated Sourcetypes

  • Sourcetype: uberAgent:Process:ProcessStartup has new field(s): HashMD5, HashSHA1, HashSHA256, HashIMP, SignatureStatus, IsSignedByOSVendor, SignerName.
  • Sourcetype: uberAgent:Process:ProcessStartup: fields ProcHash and HashType have been removed.
  • Sourcetype: uberAgent:Process:ProcessStop has new field(s): HashMD5, HashSHA1, HashSHA256, HashIMP.
  • Sourcetype: uberAgent:Process:ProcessStop: fields ProcHash and HashType have been removed.
  • Sourcetype: uberAgent:Process:ProcessDetail has new field(s): SessionID.
  • Sourcetype: uberAgent:CitrixADC:AppliancePerformance has new field(s): CpuFan0Speed, CpuFan1Speed, SystemFanSpeed, Cpu0Temp, Cpu2Temp, InternalTemp, PowerSupply1Status, PowerSupply2Status, PowerSupply3Status, PowerSupply4Status, VoltageV33Main, ICAOnlySessions, ICAOnlyConnections, SmartAccessSessions, SmartAccessICAConnections, SSLSessions.
  • Sourcetype: uberAgent:CitrixADC:Gateway has new field(s): HSTS, HSTSMaxAge, HSTSInclSubdom, TLS13.
  • Sourcetype: uberAgent:CitrixADC:vServer has new field(s): HSTS, HSTSMaxAge, HSTSInclSubdom, TLS13.
  • Sourcetype: uberAgent:System:NetworkConfigInformation has new field(s): NetworkConfigWiFiSignalQuality, NetworkConfigWiFiType, NetworkConfigWiFiAuthentication.

New Sourcetypes

  • Sourcetype: new sourcetype uberAgentESA:Process:DnsQuery with fields: ProcName, ProcGUID, DnsRequest, DnsResponse, DnsResponseType and DnsEventCount.

Bugfixes

  • SMB paths had only one backslash.

Comments

Your email address will not be published. Required fields are marked *