Splunk App for Phantom Reporting

This app's functionality has been added to the Splunk App for SOAR (https://splunkbase.splunk.com/app/6361/). We recommend you use that app for this functionality and future updates. Splunk App for Phantom allows you to analyze events generated by Phantom using the "External Splunk" integration. This app includes dashboards that gives you insight in various use cases - this includes: - Case/Incident management SLA/metrics: such as measuring SLA around case resolution times - Event Management SLAs/metrics measurments - Single view of case insight including latest status, latest activities, duration, notes, correlated with automation executed - SOC analysts performance: such as measuring case resolution time or analysts with highest pending case list. - Orchestration and Action execution analytics: such as list of Phantom actions with highest number of failure or long running actions. - Easy to use dashboard that lets you run free form searches against Phantom containers and their notes