Latest Version 2.0.4
September 17, 2021
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
McAfee ESM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions
Built by
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9, 4.8, 4.7, 4.6, 4.5, 4.2, 4.1, 4.0, 3.5
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#3
in SIEM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions
Supported Actions
- test connectivity: Validates the credentials
- list fields: List the fields available to be used in filters
- on poll: Ingest Events or Alarms from ESM
- list watchlists: List the watchlists configured in ESM
- get events: Get the events associated with a correlated event ID
- get watchlist: Get the details for a specific watchlist and the values in that watchlist as configured in the ESM
- update watchlist: Add an entry to a specific watchlist as configured in the ESM
Categories
Created By
Splunk Inc.
Source Code
GitHub(Opens new window)Type
connector
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing