This app is archived. Learn more

Certificate Transparency Log add-on for Splunk

This add-on for Splunk can be used to monitor certificate transparency logs. For example to watch certificates issued for your domains or malicious look-a-likes. It outputs the certificate logs as CIM compliant events in Splunk. This allows you to create an alert in Splunk or Splunk Enterprise Security that fires when a certificate gets issued for your-domain-suspicious-fishing-domain dot tld.

Built by Jorrit Folmer

Latest Version 1.3.1

November 26, 2020

Release notes

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1

CIM Version: 4.x

Rating

0

(0)

Log in to rate this app

Support

Not Supported

Learn more

This add-on for Splunk can be used to monitor certificate transparency logs. For example to watch certificates issued for your domains or malicious look-a-likes. It outputs the certificate logs as CIM compliant events in Splunk. This allows you to create an alert in Splunk or Splunk Enterprise Security that fires when a certificate gets issued for your-domain-suspicious-fishing-domain dot tld.