Varonis Technology Add-on for Splunk

The Varonis Technology Add-on (TA) for Splunk®enables integrating the Varonis DatAlert functionality into Splunk Enterprise. The TA, together with the Varonis App for Splunk provides field extractions and dashboards that enable you to locate notable Varonis alerts directly from the Splunk user interface and then drill down into Varonis DatAlert to get additional insights into the alert and the context in which it was generated. Also, field extractions assist users in querying and visualizing Varonis alerts using Splunk Enterprise. Varonis App and TA are Splunk CIM compliant which enables correlating the Varonis alerts with other events collected by Splunk Enterprise as well is incorporating Varonis alerts in Splunk Enterprise Security (ES). Download the Varonis DatAlert App here: https://splunkbase.splunk.com/app/3553

Built by App Varonis

Latest Version 2.0.15

August 4, 2023

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0

CIM Version: 5.x, 4.x, 3.x

Rating

0

(0)

Log in to rate this app

Support

Developer Supported addon

Learn more

The Varonis Technology Add-on (TA) for Splunk®enables integrating the Varonis DatAlert functionality into Splunk Enterprise. The TA, together with the Varonis App for Splunk provides field extractions and dashboards that enable you to locate notable Varonis alerts directly from the Splunk user interface and then drill down into Varonis DatAlert to get additional insights into the alert and the context in which it was generated. Also, field extractions assist users in querying and visualizing Varonis alerts using Splunk Enterprise. Varonis App and TA are Splunk CIM compliant which enables correlating the Varonis alerts with other events collected by Splunk Enterprise as well is incorporating Varonis alerts in Splunk Enterprise Security (ES). Download the Varonis DatAlert App here: https://splunkbase.splunk.com/app/3553