Latest Version 2.5.0
May 6, 2025
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Proofpoint - ET Splunk TA
The ET Splunk Technical Add-on (ET-TA) seamlessly integrates the acclaimed Emerging Threats Intelligence feed into Splunk, and provides predefined macros and lookups to enrich and search any log that Splunk can parse with ET Intelligence reputation data. The ET-TA installs in seconds, and empowers the Splunk admin to create custom searches, dashboards, panels, pivots, reports, and alerts enriched with ET intelligence data.
Built by
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 5.x, 4.x, 3.x
Rating
0
(0)
Log in to rate this app
Support
Not Supported
The ET Splunk Technical Add-on (ET-TA) seamlessly integrates the acclaimed Emerging Threats Intelligence feed into Splunk, and provides predefined macros and lookups to enrich and search any log that Splunk can parse with ET Intelligence reputation data. The ET-TA installs in seconds, and empowers the Splunk admin to create custom searches, dashboards, panels, pivots, reports, and alerts enriched with ET intelligence data.
Features:
• Automatically Downloads, Installs, and Updates ET Intelligence reputation data.
• Predefined Macros and Lookups to enrich any log containing IP/Domain fields that Splunk can parse with ET reputation data.
• Support for Splunk Search, Dashboard, Panels, Pivots, Reports, and Alerts leveraging ET reputation data.
• Splunk Adaptive Response Framework Support to automatically enrich IOCs with additional ET Intelligence data
• Splunk Cloud Support
Categories
Created By
Proofpoint Splunk Integrations
Type
addon
Downloads
5,329
Licensing
Splunk Answers
Resources
Log in to report this app listing