Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Carbon Black Defense app icon

Carbon Black Defense

This app integrates with an instance of Carbon Black defense to run investigative and generic actions

Built by Splunk Inc.
soar product badge
Latest Version 2.0.18
September 17, 2021
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9
Rating

0

(0)

Log in to rate this app
Support
Carbon Black Defense support icon
Splunk Supported connector
Ranking

#2

in Endpoint
This app integrates with an instance of Carbon Black defense to run investigative and generic actions

Supported Actions

  • test connectivity: Validate the supplied API Key
  • list devices: List devices connected to CB Defense
  • update device: Change the policy of a device connected to CB Defense
  • list policies: List policies that exist on CB Defense
  • add policy: Create a new policy on CB Defense
  • delete policy: Delete a policy on CB Defense
  • add rule: Add a rule to a policy on CB Defense
  • delete rule: Delete a rule from a policy on CB Defense
  • list processes: List processes that match supplied filter criteria
  • list events: List events that match supplied filter criteria
  • get event: Get information about an event
  • get alert: Get information about an alert
  • get notifications: Get notifications from CB Defense
  • update policy: Updates an existing policy on the Carbon Black Defense server
  • get policy: Retrieves an existing policy from the Carbon Black Defense server

Categories

Created By

Splunk Inc.

Source Code

Type

connector
0

Licensing

Splunk Answers

Resources

Login to report this app listing