Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Warning

This app is archived. Learn more

Menlo Security Add-on for Splunk app icon

Menlo Security Add-on for Splunk

1. This addon currently covers the menlo security audit log and web logs that is collected via REST API. 2. The following is the sourcetypes used by this addon: a) menlosecurity:audit:json is used for the audit log. b) menlosecurity:web:json is used for the web log. [version 1.0.3] - Increased collection hard limit from 10000 events to 100000 events. [version 1.0.2] - Increased collection hard limit from 1000 events to 10000 events. [version 1.0.1] - due to no data available in the JSON file result, checkpointing has been removed. Instead the input will run every 5 minutes to return data of the past 5 minutes.

Built by Mohd Faizal Mohd Yusoff
splunk product badge
Latest Version 1.0.4
December 12, 2022
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
CIM Version: 4.x
Rating

0

(0)

Log in to rate this app
Support
Menlo Security Add-on for Splunk support icon
Not Supported
1. This addon currently covers the menlo security audit log and web logs that is collected via REST API. 2. The following is the sourcetypes used by this addon: a) menlosecurity:audit:json is used for the audit log. b) menlosecurity:web:json is used for the web log. [version 1.0.3] - Increased collection hard limit from 10000 events to 100000 events. [version 1.0.2] - Increased collection hard limit from 1000 events to 10000 events. [version 1.0.1] - due to no data available in the JSON file result, checkpointing has been removed. Instead the input will run every 5 minutes to return data of the past 5 minutes.

Categories

Created By

Mohd Faizal Mohd Yusoff

Type

addon

Downloads

693

Licensing

Splunk Answers

Resources

Login to report this app listing