Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Proofpoint - ET Splunk TA app icon

Proofpoint - ET Splunk TA

The ET Splunk Technical Add-on (ET-TA) seamlessly integrates the acclaimed Emerging Threats Intelligence feed into Splunk, and provides predefined macros and lookups to enrich and search any log that Splunk can parse with ET Intelligence reputation data. The ET-TA installs in seconds, and empowers the Splunk admin to create custom searches, dashboards, panels, pivots, reports, and alerts enriched with ET intelligence data. Features: • Automatically Downloads, Installs, and Updates ET Intelligence reputation data. • Predefined Macros and Lookups to enrich any log containing IP/Domain fields that Splunk can parse with ET reputation data. • Support for Splunk Search, Dashboard, Panels, Pivots, Reports, and Alerts leveraging ET reputation data. • Splunk Adaptive Response Framework Support to automatically enrich IOCs with additional ET Intelligence data • Splunk Cloud Support

Built by Proofpoint Splunk Integrations
splunk product badge
Latest Version 2.4.9
December 26, 2024
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 5.x, 4.x, 3.x
Rating

0

(0)

Log in to rate this app
The ET Splunk Technical Add-on (ET-TA) seamlessly integrates the acclaimed Emerging Threats Intelligence feed into Splunk, and provides predefined macros and lookups to enrich and search any log that Splunk can parse with ET Intelligence reputation data. The ET-TA installs in seconds, and empowers the Splunk admin to create custom searches, dashboards, panels, pivots, reports, and alerts enriched with ET intelligence data. Features: • Automatically Downloads, Installs, and Updates ET Intelligence reputation data. • Predefined Macros and Lookups to enrich any log containing IP/Domain fields that Splunk can parse with ET reputation data. • Support for Splunk Search, Dashboard, Panels, Pivots, Reports, and Alerts leveraging ET reputation data. • Splunk Adaptive Response Framework Support to automatically enrich IOCs with additional ET Intelligence data • Splunk Cloud Support

Categories

Created By

Proofpoint Splunk Integrations

Type

addon

Downloads

5,006

Licensing

Splunk Answers

Resources

Login to report this app listing