This app is archived. Learn more

Threat Intelligence EclecticIQ Platform App

EclecticIQ Platform acquires cyber threat data in different formats from multiple sources; de-duplicates, normalizes, and enriches source data with additional contextual details; and feeds relevant information to Splunk Enterprise. Splunk Enterprise, using a rule-based approach, analyzes and filters cyber threat data to identify the most relevant threats to your organization. Important sightings and alerts are then fed back into EclecticIQ Platform for automatic dissemination and analyst review. The result of this process is a rich threat intelligence dataset that allows you to efficiently tune your SIEM prevention and detection system. The Splunk App for EclecticIQ Platform ships with a default set of dashboard gauges to make it easier for Splunk users to monitor feed data collection.

Built by EclecticIQ BV

Latest Version 2.5.5

November 9, 2020

Release notes

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2

Rating

0

(0)

Log in to rate this app

Support

Not Supported

Learn more

EclecticIQ Platform acquires cyber threat data in different formats from multiple sources; de-duplicates, normalizes, and enriches source data with additional contextual details; and feeds relevant information to Splunk Enterprise. Splunk Enterprise, using a rule-based approach, analyzes and filters cyber threat data to identify the most relevant threats to your organization. Important sightings and alerts are then fed back into EclecticIQ Platform for automatic dissemination and analyst review. The result of this process is a rich threat intelligence dataset that allows you to efficiently tune your SIEM prevention and detection system. The Splunk App for EclecticIQ Platform ships with a default set of dashboard gauges to make it easier for Splunk users to monitor feed data collection.