Latest Version 0.0.7
May 16, 2018
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
This app is archived. Learn more
Countercept Omni EDR App for Splunk
Enables threat hunters to develop and deploy use cases against the Countercept Omni EDR data.
Built by Chris Newman
Compatibility
Not Available
Platform Version: 7.1, 7.0
Rating
0
(0)
Log in to rate this app
Support
Not Supported
Enables threat hunters to develop and deploy use cases against the Countercept Omni EDR data.
This app is a foundation framework with examples of how to use the Omni EDR data and Splunk techniques to manage data loads and combined SPL to hunt for evil.
Categories
Created By
Chris Newman
Type
app
Downloads
197
Licensing
Splunk Answers
Resources
Log in to report this app listing