Warning
Splunkbase Classic has been deprecated and will be deactivated on February 18, 2026.
CylancePROTECT Add-on for Splunk Enterprise app icon

CylancePROTECT Add-on for Splunk Enterprise

This is the CylancePROTECT Technology Add-on (TA) designed to support the CylancePROTECT app found here: https://splunkbase.splunk.com/app/3233/

Built by
splunk product badge
Latest Version 1.7.0
March 27, 2024
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2
CIM Version: 4.x, 3.x
Rating

0

(0)

Log in to rate this app
Support
CylancePROTECT Add-on for Splunk Enterprise support icon
Developer Supported addon
Ranking

#13

in IoT & Industrial Data
This is the CylancePROTECT Technology Add-on (TA) designed to support the CylancePROTECT app found here: https://splunkbase.splunk.com/app/3233/ When you should not use this TA: This Technology Add-on (TA) is not necessary for simple Splunk installations (e.g. All-in-one Splunk install -- no forwarders or separate indexers) Instead just install the app located here: https://splunkbase.splunk.com/app/3233/ Also do not use this TA on a forwarder if you are planning on consuming the once-per-day Threat Data Report (TDR) data via the API pull which requires scripted input. Instead use a full Cylance Splunk app install for that forwarder. When you should use this TA: This TA supports the CylancePROTECT App for Splunk. It does not contain any dashboards and should be installed on Splunk indexers and forwaders that are not consuming the once-per-day TDR data via the API. The app itself should always be installed on the search head.

Categories

IoT & Industrial Data, Security, Fraud & Compliance

Created By

Adam Schieman

Type

addon

Downloads

6,213

Licensing

BlackBerry Solution License Agreement(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing