Darktrace App for Splunk

Darktrace is a global leader in cyber security artificial intelligence, delivers complete AI-powered solutions in its mission to free the world of cyber disruption. Its technology continuously learns and updates its knowledge of 'you' for an organization and applies that understanding to achieve an optimal state of cyber security. Breakthrough innovations from its R&D Centers have resulted in over 145 patent applications filed. Darktrace employs over 2,200 people around the world and protects c.8,800 organizations globally from advanced cyber-threats. The Darktrace Splunk app brings the power of Darktrace self learning to Splunk - insights from Darktrace's AI can be correlated against alerts from internal threat intelligence tools and other elements of your organization's security stack. The custom Workflow Integration data format allows model breach alerts, system status and AI Analyst incidents to be populated within the connected Splunk instance. Alert data is Splunk CIM compatible for enhanced integration across logs.