Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an app
Thinkst Canary Audit Input app icon

Thinkst Canary Audit Input

Pulls down Thinkst Canary audit logs using the API.

Built by
splunk product badge
Latest Version 1.0.2
August 10, 2025
Compatibility
Not Available
Platform Version: 10.0, 9.4, 9.3, 9.2
Rating

0

(0)

Log in to rate this app
Support
Thinkst Canary Audit Input support icon
Not Supported
Pulls down Thinkst Canary audit logs using the API. Install on Splunk Cloud IDM or a heavy forwarder. Can also be installed on Search heads for the sourcetypes, but its clearer if you just create the sourcetype canarytools:audit manually with KV_MODE = none. Icon from https://www.vecteezy.com/vector-art/1919479-linear-audit-document-icons-design-isolated-on-white-background https://github.com/Bre77/TA_thinkst_canary_audit

Categories

Created By

Brett Adams

Source Code

Type

addon

Downloads

667

Licensing

Splunk Answers

Resources

Log in to report this app listing