Latest Version 2.0.5
September 17, 2021
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
FireAMP
This App allows for querying endpoints connected to Cisco FireAMP while also providing investigative hunting capabilities
Built by Splunk Inc.
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#2
in Endpoint
This App allows for querying endpoints connected to Cisco FireAMP while also providing investigative hunting capabilities
Supported Actions
- test connectivity: Validate the asset configuration by attempting to connect and getting the version of the API endpoint
- list endpoints: List all of the endpoints connected to FireAMP
- hunt file: Search for a file matching a SHA256 hash across all endpoints
- hunt ip: Search for a given IP
- hunt url: Search for a given URL
- get device info: Get information about a device given its connector GUID
Categories
Created By
Splunk Inc.
Source Code
Type
connector
Licensing
Splunk Answers
Resources
Login to report this app listing