Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Supporting Add on for MITRE app icon

Supporting Add on for MITRE

This app provides a method to ingest MITRE ATT&CK® tactics, techniques, and subtechniques into Splunk events. The app contains a mitre_techniques KVStore with the metadata provided from ATT&CK to help enrich alerts and ES Correlations without needing to navigate back to the MITRE ATT&CK website. IMPORTANT: Standalone Search Head (will not work on Search Head Cluster) Direct internet connection required (no proxy)

Built by bitsIO inc
splunk product badge
Latest Version 1.2.1
April 18, 2024
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 5.x, 4.x
Rating

0

(0)

Log in to rate this app
This app provides a method to ingest MITRE ATT&CK® tactics, techniques, and subtechniques into Splunk events. The app contains a mitre_techniques KVStore with the metadata provided from ATT&CK to help enrich alerts and ES Correlations without needing to navigate back to the MITRE ATT&CK website. IMPORTANT: Standalone Search Head (will not work on Search Head Cluster) Direct internet connection required (no proxy)

Categories

Created By

bitsIO inc

Type

addon

Downloads

1,750

Licensing

Splunk Answers

Resources

Login to report this app listing