Latest Version 1.0.0
July 21, 2020
Welcome to the new Splunkbase! To return to the old Splunkbase, .
This app is archived.
Trend Micro Threat Indicator Assessment for Splunk
Trend Micro Threat Indicator Assessment for Splunk scans endpoint activity data for file-based threat indicators from global intelligence sources. The app only supports data that complies with the Splunk Common Information Model (CIM). The app uses file-based threat indicators that are cited in intelligence reports authored by Trend Micro security experts. During scans, the app checks if any of the indicators match event data from the last seven days. When a match is made, the app displays the following information:
Built by
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
CIM Version: 4.x
Rating
0
(0)
Log in to rate this app
Support
Not Supported
Trend Micro Threat Indicator Assessment for Splunk scans endpoint activity data for file-based threat indicators from global intelligence sources. The app only supports data that complies with the Splunk Common Information Model (CIM).
The app uses file-based threat indicators that are cited in intelligence reports authored by Trend Micro security experts. During scans, the app checks if any of the indicators match event data from the last seven days. When a match is made, the app displays the following information:
● Link to the published report on the TrendLabs Security Intelligence Blog
● Number of matched indicators from that specific report
● Number of matched logs
Categories
Created By
Trend Micro
Type
app
Downloads
428
Licensing
Splunk Answers
Resources
Log in to report this app listing