Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Warning

This app is archived. Learn more

AWS Web Application Firewall Add-on app icon

AWS Web Application Firewall Add-on

The purpose of this add-on is to provide value to your AWS Web Application Firewall (WAF) logs. This is done by making the logs CIM compliant, adding tagging for Enterprise Security data models, and other knowledge objects to make searching and visualizing this data easy. This add-on also provides a concise guide for how to get your AWS WAF logs into Splunk using AWS Kinesis Firehose (see README for more details).

splunk product badge
screenshot

Latest Version 1.0.5
June 13, 2023
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
CIM Version: 5.x
Rating

0

(0)

Log in to rate this app
Support
AWS Web Application Firewall Add-on support icon
Not Supported
The purpose of this add-on is to provide value to your AWS Web Application Firewall (WAF) logs. This is done by making the logs CIM compliant, adding tagging for Enterprise Security data models, and other knowledge objects to make searching and visualizing this data easy. This add-on also provides a concise guide for how to get your AWS WAF logs into Splunk using AWS Kinesis Firehose (see README for more details). +Built for Splunk Enterprise 6.x.x and higher +CIM Compliant (CIM 4.0.0 or higher) +Ready for Enterprise Security +Built around JSON format from AWS Kinesis Firehose ++https://docs.splunk.com/Documentation/AddOns/released/Firehose/ConfigureFirehose ++https://docs.aws.amazon.com/waf/latest/developerguide/logging.html

Categories

Created By

Hurricane Labs

Type

addon

Downloads

5,552

Resources

Log in to report this app listing