icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.
Splunkbase will be undergoing a scheduled migration and will be unavailable on Saturday, Oct 1, 2022, from 11AM to 3PM PDT

Accept License Agreements

Thank You

Downloading Splunk UBA Content Updates
SHA256 checksum (splunk-uba-content-updates_502.tgz) 8aaaaef3fa3be3b0cc0d1b9636c1e172180d4955e3a728799a839278a6c2e123 SHA256 checksum (splunk-uba-content-updates_434.tgz) 634b260fe9d8bef4003b0f75f5687b99f54cd8c86ab04892cff2e4ac8e50a168 SHA256 checksum (splunk-uba-content-updates_433.tgz) 83e62cf460cff17834f10ed01c4b84963aa0db5477c21cd6fdbfb21281bcdbb1 SHA256 checksum (splunk-uba-content-updates_432.tgz) 5f65d9009b4badb639b967c171225e09e5b5fb3b389a107e34d1b9d0ad870b80 SHA256 checksum (splunk-uba-content-updates_423.tgz) 4fafc974272ccb13df7a228703c3a609ce3b8df3b65c391e600bac6e99c07855 SHA256 checksum (splunk-uba-content-updates_422.tgz) acdb6f303105311115aa5551eac82baab4f3330ad95fbd1b2a34b07d03a64576 SHA256 checksum (splunk-uba-content-updates_413.tgz) 3ea762969e4f71703bb0c7200be9dc8324436b3e465d09ed9dfb40e3b7a28402 SHA256 checksum (splunk-uba-content-updates_412.tgz) a2fd1a72823ec197bc6312bbe75614539769afb286d8d53c2c5ec125664f5e32 SHA256 checksum (splunk-uba-content-updates_402.tgz) f252c2cc789e7a480909d033a84de8aba6dfe9f2f5b2eb8e7d0f6aa082f5dd2e SHA256 checksum (splunk-uba-content-updates_401.tgz) 59e1868d829ab58644d87379b2c15ba1f6173851c9a8487c706961c572a2f9a7 SHA256 checksum (splunk-uba-content-updates_331.tgz) 0e3b28c693a52bbab1e8fdcf3560e431260a8974dd1a2d2614714ae8a32b89a2 SHA256 checksum (splunk-uba-content-updates_322.tgz) 95643fd5662588aefa1787b4d7734863a861e32f309c5183277f2e636d29c7f4
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate


Splunk UBA Content Updates

Splunk Built
Splunk User Behavior Analytics (UBA) is a machine learning-powered solution that helps organizations find unknown threats and anomalous behavior and solves a wide range of insider threat and external attack detection use cases. It uses unsupervised machine learning algorithms to produce actionable results with risk ratings and supporting evidence that augment security operation center (SOC) analysts’ existing techniques for faster action. Additionally, it provides visual pivot points for security analysts and threat hunters to proactively investigate anomalous behavior.

Security landscape is constantly evolving with new and advanced threats found every day. This makes it difficult for enterprises to keep up with the latest threat detection techniques between two consecutive software releases. Splunk UBA’s content subscription service is a delivery mechanism that enables enterprises to bridge this gap and help maintain a good security posture. Through the content updates, Splunk UBA’s security and data science research team continuously improves the efficacy of UBA generated threats and anomalies independent of the software release process.

Splunk UBA content update delivers one or all of the following:
- New or enhanced machine learning data models
- Deterministic security rules
- Threat intelligence

For information on installation and release notes see: http://docs.splunk.com/Documentation/UBA

Release Notes

Version 5.0.2
Feb. 12, 2020
Version 4.3.4
Sept. 11, 2019
Version 4.3.3
Aug. 8, 2019

This release includes new content in the following areas:
Database-related activity
Data exfiltration through a single file
* Cloud data, including Office 365

See the documentation at https://docs.splunk.com/Documentation/UBA/4.3.3.

Version 4.3.2
June 17, 2019
Version 4.2.3
Jan. 30, 2019
Version 4.2.2
Dec. 6, 2018
Version 4.1.3
Sept. 4, 2018
Version 4.1.2
Aug. 15, 2018
Version 4.0.2
March 7, 2018
Version 4.0.1
Jan. 8, 2018
Version 3.3.1
Sept. 20, 2017
Version 3.2.2
May 26, 2017

Subscribe Share

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.