Cyware Intel Exchange app icon

Cyware Intel Exchange

Integrate Cyware Intel Exchange with Splunk to ingest, correlate, and act on threat intelligence directly within your Splunk environment.

Built by Cyware Labs
splunk product badge
Latest Version 4.0.2
June 8, 2026
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.4, 10.3, 10.2, 10.1, 10.0, 9.4, 9.3
CIM Version: 6.x
Rating

5

(1)

Log in to rate this app
Support
Cyware Intel Exchange support icon
Developer Supported addon
Ranking

#16

in Threat Intel
The Cyware Intel Exchange App for Splunk integrates Intel Exchange directly into Splunk Enterprise, enabling teams to ingest, correlate, and operationalize threat indicators without leaving their Splunk environment. Using this add-on, you can: 1. Ingest threat indicators from Cyware Intel Exchange into Splunk using KV Store–based lookups. 2. Correlate indicators with Splunk events to identify sightings and support detection workflows. 3. Visualize threat intelligence activity through prebuilt dashboards for indicator and correlation insights. 4. Manage indicators directly from Splunk using operational actions such as updating status, applying tags, creating tasks, and adding notes.

Categories

Security, Fraud & Compliance, Threat Intel

Created By

Cyware Labs

Type

addon

Downloads

2,699

Licensing

End User License Agreement for Third-Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing