ServiceNow Security Operations add-on for Splunk
When Splunk is integrated with the ServiceNow Security Operations applications, you can seamlessly create security incidents or events from Splunk events, alerts, and logs. After you have downloaded the ServiceNow Security Operations add-on for Splunk from Splunkbase, you are ready to use the integration to create the desired security records.
Full documentation available at ServiceNow Security Operations add-on for Splunk documentation.
Multiple record alerts added to replace scripted alerts
Splunk Cloud certified
6.5, 6.6, 7.0 validated
Moved icons to other static folder
There is a subsequent version to support installation on Splunk Enterprise Security, please go to https://splunkbase.splunk.com/app/3921
Removed deprecated script alert
Moved passwords to storage/passwords for encryption
Splunk Cloud Certified
Added static folder in proper location.
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 50GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.