Latest Version 1.0.0
May 27, 2019
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
This app is archived. Learn more
Kolide Fleet App for Splunk
The Kolide Fleet App for Splunk is designed to ingest, parse, and display results and status information from osquery Kolide Fleet servers. We provide dashboards for processing osquery_info, programs, process_open_sockets, user queries and more. This can be used by ITOps and Security alike.
Built by Tony Lee
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 4.x, 3.x
Rating
0
(0)
Log in to rate this app
Support
Not Supported
The Kolide Fleet App for Splunk is designed to ingest, parse, and display results and status information from osquery Kolide Fleet servers. We provide dashboards for processing osquery_info, programs, process_open_sockets, user queries and more. This can be used by ITOps and Security alike.
The app requires specific Pack and Query names for the dashboards to properly populate. For this reason, we have exported our Kolide Packs and Queries and made them available for download. Please see the Details tab for installation and configuration instructions.
Big thanks from the Crew:
Tony Lee
Matt Kemelhar
Categories
Created By
Tony Lee
Type
app
Downloads
488
Licensing
Splunk Answers
Resources
Log in to report this app listing