Warning

This app is archived. App archiving documentation

FireEye Add-on for Splunk Enterprise app icon

FireEye Add-on for Splunk Enterprise

FireEye TA to support the FireEye_v3 app found here: https://apps.splunk.com/app/1845/

Built by
splunk product badge
Latest Version 3.1.1
January 13, 2017
Compatibility
Splunk Enterprise
Platform Version: 7.0
CIM Version: 4.x, 3.x
Rating

2

(8)

Log in to rate this app
Support
FireEye Add-on for Splunk Enterprise support icon
Not Supported
FireEye TA to support the FireEye_v3 app found here: https://apps.splunk.com/app/1845/ App walk-through video: http://youtu.be/-KBN1Xvqe6U Supported FireEye Appliances are: - Network Threat Prevention Platform ( NX Series ) - Email Threat Prevention Platform (EX Series) - Forensic Analysis Platform (AX Series) - Content Threat Prevention Platform (FX Series) - Endpoint Threat Prevention Platform (HX Series) - Network Forensics Platform (PX Series) - Threat Analytics Platform (TAP) Supported protocols and formats are: 1) JSON over HTTPS 2) XML over HTTPS 3) CEF over SYSLOG - TCP 4) CEF over SYSLOG - UDP 5) XML over SYSLOG - TCP 6) XML over SYSLOG - UDP 7) JSON over SYSLOG - TCP 8) JSON over SYSLOG - UDP 9) CSV over SYSLOG - TCP 10) CSV over SYSLOG - UDP

Categories

IT Operations, Security, Fraud & Compliance

Created By

FireEye Splunk

Type

addon

Downloads

8,751

Licensing

End User License Agreement for Third-Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing