Warning
Splunkbase Classic has been deprecated and will be deactivated on February 18, 2026.
Warning

This app is archived. App archiving documentation

Threat Activity Drilldown for ES app icon

Threat Activity Drilldown for ES

*** Deprecated as of Splunk ES 4.7, as this functionality was built into ES 4.7 *** *** Please do not use with ES 4.7 or newer version! ***

Built by
splunk product badge
screenshot
screenshot
screenshot
Latest Version 1.1
April 14, 2016
Compatibility
Splunk Enterprise, Splunk Cloud
Rating

0

(0)

Log in to rate this app
Support
Threat Activity Drilldown for ES support icon
Not Supported
*** Deprecated as of Splunk ES 4.7, as this functionality was built into ES 4.7 *** *** Please do not use with ES 4.7 or newer version! *** This search add-on contains adds workflow actions to the ES Notable Event and the ES Threat Activity events so that an analyst looking at either can drill down from a threat activity indicator to look at the underlying raw events.

Categories

Security, Fraud & Compliance

Created By

David Veuve

Type

addon

Downloads

594

Licensing

End User License Agreement for Third-Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing