Secure Configuration ManagerYou can generate reports in Splunk Dashboard based on the event data. For example, you can use the following search string to create a report of top assets by Risk:
<searchString>source="104.23.456.189" | top 5 cs3,cs1,cs2,dst,dhost,sourceServiceName,suser showcount=false showperc=false | table dhost,dst,sourceServiceName,suser,cs1,cs2,cs3| sort -cs3 | rename cs3 as "Managed Risk" | rename cs2 as "Excepted Risk" | rename suser as "User" | rename dhost as "Asset Name" | rename dst as "Asset IP" | rename sourceServiceName as "Platform" | rename cs1 as "Total Risk"</searchString>
Secure Configuration ManagerSimilarly, you can create a number of reports in various panels of the Splunk Dashboard, using the attributes of the events that sends.