CEF Extraction Add-on for Splunk app icon

CEF Extraction Add-on for Splunk

This add-on provides transforms for CEF headers and key/values extraction for extractling custom strings (useful for dealing with Arcsight logs)

Built by Igor Sher
splunk product badge
Latest Version 1.5.6
June 23, 2025
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.4, 10.3, 10.2, 10.1, 10.0, 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
Rating

4

(14)

Log in to rate this app
Support
CEF Extraction Add-on for Splunk support icon
Not Supported
This add-on provides transforms for CEF headers and key/values extraction for extractling custom strings (useful for dealing with Arcsight logs)

Categories

Utilities

Created By

Igor Sher

Type

addon

Downloads

12,125

Licensing

Creative Commons BY 3.0(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing