Latest Version 1.0.2
October 5, 2015
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
This app is archived. Learn more
Proofpoint - ET Splunk TA
The ET Splunk Technical Add-on (ET-TA) seamlessly integrates the acclaimed Emerging Threats Intelligence feed into Splunk, and provides predefined macros and lookups to enrich and search any log that Splunk can parse with ET Intelligence reputation data. The ET-TA installs in seconds, and empowers the Splunk admin to create custom searches, dashboards, panels, pivots, reports, and alerts enriched with ET intelligence data. Features: • Automatically Downloads, Installs, and Updates ET Intelligence reputation data. • Predefined Macros and Lookups to enrich any log containing IP/Domain fields that Splunk can parse with ET reputation data. • Support for Splunk Search, Dashboard, Panels, Pivots, Reports, and Alerts leveraging ET reputation data.
Built by Brad Woodberg
Compatibility
Not Available
Platform Version: 6.3, 6.2, 6.1, 6.0
Rating
0
(0)
Log in to rate this app
Support
Not Supported
The ET Splunk Technical Add-on (ET-TA) seamlessly integrates the acclaimed Emerging Threats Intelligence feed into Splunk, and provides predefined macros and lookups to enrich and search any log that Splunk can parse with ET Intelligence reputation data. The ET-TA installs in seconds, and empowers the Splunk admin to create custom searches, dashboards, panels, pivots, reports, and alerts enriched with ET intelligence data.
Features:
• Automatically Downloads, Installs, and Updates ET Intelligence reputation data.
• Predefined Macros and Lookups to enrich any log containing IP/Domain fields that Splunk can parse with ET reputation data.
• Support for Splunk Search, Dashboard, Panels, Pivots, Reports, and Alerts leveraging ET reputation data.
Categories
Created By
Brad Woodberg
Type
addon
Downloads
37
Licensing
Splunk Answers
Resources
Login to report this app listing