Latest Version 2.0.4
September 17, 2021
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
McAfee ESM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions
Built by Splunk Inc.
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9, 4.8, 4.7, 4.6, 4.5, 4.2, 4.1, 4.0, 3.5
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#1
in SIEM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions
Supported Actions
- test connectivity: Validates the credentials
- list fields: List the fields available to be used in filters
- on poll: Ingest Events or Alarms from ESM
- list watchlists: List the watchlists configured in ESM
- get events: Get the events associated with a correlated event ID
- get watchlist: Get the details for a specific watchlist and the values in that watchlist as configured in the ESM
- update watchlist: Add an entry to a specific watchlist as configured in the ESM
Categories
Created By
Splunk Inc.
Source Code
Type
connector
Licensing
Splunk Answers
Resources
Login to report this app listing