icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.
Log4Shell Vulnerability: Information and guidance for you. Get resources.

Accept License Agreements

Thank You

Downloading Cyber4Sight for Splunk
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate

splunk

Cyber4Sight for Splunk

Splunk Cloud
Splunk Built
This app has been archived. Learn more about app archiving.
Overview
Details
Booz Allen Cyber4Sight® for Splunk taps into a stream of human-derived intelligence to automatically paint a picture of the relationships between threat actors, their TTPs and the threats your organization faces. Customized for your distinct threat landscape, Cyber4Sight's stream of threat actor-centric information provides a formidable tool in your fight against cybercrime, targeted attacks and hacktivism. Cyber4Sight for Splunk fuses Booz Allen’s human-derived intelligence with the power of Splunk’s analytics-driven security to deliver actionable threat insights.

Learn More: https://www.splunk.com/c4s

Cyber4Sight® for Splunk integrates the threat intelligence content generated by Booz Allen’s Cyber4Sight® Managed Security Service within our Threat Defense Operations Best Practices into Splunk Enterprise Security.
Cyber4Sight® for Splunk increases the time-to-value for Splunk customers to quickly and easily integrate cyber threat intelligence into their environment. Leveraging Splunk’s Adaptive Response Framework and Booz Allen’s rich threat data, full context, and human readable reports, this app automatically correlates data and events in Splunk ES to operationalize intelligence for security use-cases.

This capability helps existing Splunk ES customers enhance functionality of the platform without having to separately or manually procure and integrate external threat intel capabilities. It helps prospective Splunk ES customers increase their ROI.

Cyber4Sight® is a mission focused intelligence monitoring service, providing actionable analysis across the full spectrum of cyber threats and their unique motivations behind them. We go beyond arbitrary risk scores with threat actor-centric context, connecting indicators to the actor and the intent behind the threat. This comprehensive picture is analyzed and curated by a team of intelligence analysts, technical experts (SOC, incident response, computer forensics, and malware reverse engineers), journalists, linguists, academics, anti-fraud investigators, registered private investigators, and former law-enforcement professionals. Our next-gen collection platform pulls from over 170,000 targeted sources of intelligence across the open and closed Internet to provide strategic and tactical insight for combatting cyber-crime, targeted attacks and hacktivism. Our sources range from social media, closed forums, security research communities, IRC channels, vendor feeds, P2P monitoring and paste sites, to over 400 deep and dark web forums and marketplaces.

Cyber4Sight® for Splunk and Splunk Enterprise Security 4.5.0 use the same framework and share certain components so that they work together without duplicating efforts.

If you have questions about Cyber4Sight® for Splunk, file a case using the Splunk Support Portal.

If your Splunk deployment is large or complex, talk to a member of the Splunk Professional Services team to assist you in deploying the Splunk App for PCI Compliance.

Installation process follow the standard Splunk App Install process. For more information
please refer to Splunk documentation. Note: The Cyber4Sight Add-on for Splunk must be installed before downloading this app.

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.