Is there any way to export CSV enrichment sources? From time to time these files are lost and it is a hassle to recreate.
Page 1 / 1
Hi Prabesh,
You can use Search Query and Export as CSV:
Table <table_name> | fields field1, field2, field3For instance,
Table threat_intelligence | fields domain, category, end_ts, port, score, start_ts, threat_sourceYou can export this search result as CSV.
Thank you so much Basudev. This resolved my problem
Hi,
This conversation is quite old, but I’ll use this thread anyway.
I have tried to export the CSV enrichment source by performing a query and export them in csv. But I have a CSV file with more than 10,000 rows and the export from query method doesn’t fully works as it only export the first 10,000 rows.
Is there another way to fully export the csv enrichment source?
Hi Ahmad,
On that case, rather then fields you can make use of chart count() followed by limit . It will add additional column with count but should be able to do the job.
New query should look like this:
Table <table_name> | chart count() by field1, field2, field3 limit 12000This will provide 12000 rows of data. If you want more you can change the value but using exponentially higher number might make the UI unresponsive.
Reply
Sign up
Already have an account? Login
Already a Partner or Customer? Login with your LogPoint Support credentials. Don‘t have a LogPoint Support account? Ask your local LogPoint Representative. Only visiting? Login with LinkedIn to gain read–access.
LOGIN AS PARTNER OR CUSTOMER Login with LinkedInLogin to the community
Already a Partner or Customer? Login with your LogPoint Support credentials. Don‘t have a LogPoint Support account? Ask your local LogPoint Representative. Only visiting? Login with LinkedIn to gain read–access.
LOGIN AS PARTNER OR CUSTOMER Login with LinkedInEnter your E-mail address. We'll send you an e-mail with instructions to reset your password.