Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
This app is archived. Learn more
Cisco Secure Endpoint (formerly AMP for endpoints)
The Cisco Secure Endpoint Events App (formerly AMP for endpoints) provides a mechanism to create, update, and delete event streams in Cisco Advanced Malware Protection (AMP) for Endpoints via the API and index them in your Splunk® instance to make them searchable. All you need to do is provide your API host and credentials from your AMP for Endpoints account and specify the stream parameters. This app has been tested on Splunk v8.x, v9.0 and is cloud ready.
Built by Cisco Security
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1
Rating
0
(0)
Log in to rate this app
Ranking
#16
in Investigative
#28
in Endpoint
The Cisco Secure Endpoint Events App (formerly AMP for endpoints) provides a mechanism to create, update, and delete event streams in Cisco Advanced Malware Protection (AMP) for Endpoints via the API and index them in your Splunk® instance to make them searchable. All you need to do is provide your API host and credentials from your AMP for Endpoints account and specify the stream parameters. This app has been tested on Splunk v8.x, v9.0 and is cloud ready.
Categories
Created By
Cisco Security
Type
app
Downloads
6,474
Featured in Collection
Getting Started with Cisco Apps
Licensing
Splunk Answers
Resources
Login to report this app listing