The Claroty Continuous Threat Detection (CTD) add-on for Splunk delivers comprehensive security, visibility, and alert management capabilities for operational technology (OT) environments.
Designed to be used in tandem with both Splunk ES and the Splunk Add-on for OT Security, the app enables Splunk to automatically ingest OT asset data, events, and alerts from Claroty CTD.
Users can monitor all assets and potential threats in their OT environment on a single pane of glass in real-time, leading to more effective and efficient OT security monitoring and stronger OT security posture.
Installation Guide and TGZ file could be found here.
Best Practice - Important:
Note: Claroty offers a number of products that can be integrated with Splunk.
Please make sure you are using Claroty CTD before installing this add-on.
What's New? - Version 2.1.0:
2.0.1 resolves a minor logo display issue in addition to the data import and CIM improvements made in v2.0
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.