This app is archived. Learn more
The Cisco Secure Endpoint Events App (formerly AMP for endpoints) provides a mechanism to create, update, and delete event streams in Cisco Advanced Malware Protection (AMP) for Endpoints via the API and index them in your Splunk® instance to make them searchable. All you need to do is provide your API host and credentials from your AMP for Endpoints account and specify the stream parameters. This app has been tested on Splunk v8.x, v9.0 and is cloud ready.
(0)
Categories
Created By
Type
Downloads
Featured in Collection
Licensing
Splunk Answers
Resources