Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Splunk ES Content Update app icon

Splunk ES Content Update

The Splunk ES Content Update (ESCU) app delivers pre-packaged Security Content. ESCU provides regular Security Content updates to help security practitioners address ongoing time-sensitive threats, attack methods, and other security issues.

Built by
splunk product badge
screenshot
screenshot
screenshot
Latest Version 5.19.0
December 10, 2025
Compatibility
Not Available
Platform Version: 10.1, 10.0, 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3
CIM Version: 6.x, 5.x, 4.x
Rating

0

(0)

Log in to rate this app
Support
Splunk ES Content Update support icon
Splunk Supported addon
Ranking

#9

in Security, Fraud & Compliance
The Splunk ES Content Update (ESCU) app delivers pre-packaged Security Content. ESCU provides regular Security Content updates to help security practitioners address ongoing time-sensitive threats, attack methods, and other security issues. Security Content consists of tactics, techniques, and methodologies that help with detection, investigation, and response. Security Content enables security teams to directly operationalize detection searches, investigative searches, and other supporting details. ESCU can generate Notable/Risk Events in Splunk Enterprise Security. Security Content also contains easy-to-read background information and guidance, for key context on motivations and risks associated with attack techniques, as well as pragmatic advice on how to combat those techniques. The analytic stories and their searches are also available at - https://github.com/splunk/security_content.

Categories

Created By

Splunk LLC

Source Code

Splunk Security Content(Opens new window)

Type

addon

Downloads

164,489

Licensing

Apache License Version 2.0(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing