icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading Patronus SIEM
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate

Patronus SIEM

This app is NOT supported by Splunk. Please read about what that means for youhere.
Overview
Details
Patronus SIEM App provides security teams the ability to easily monitor, detect, and react to security concerns based on a scoring system that highlights notables and filters out the noise. Spend less time searching and more time logically drilling down to determine how events correlate to form a story.

Too often we see customers struggling with these challenges:
- SOC teams spending hours focused on clearing noise instead of focusing on real problems
- Bouncing from view to view trying to isolate events that caused problems
- Struggling to build a timeline of events to determine if an issue is real or a false positive
- Correlation that is less about correlating different triggering events and more about identifying something that might be considered "notable"

The Patronus SIEM provides security teams the ability to easily monitor, detect and react to security concerns based on a scoring system that highlights notables and filters out the noise. Spend less time searching and more time logically drilling down to determine how events correlate to form a story.

A basic scoring system was put in place which applies a certain level of risk to ALL detections. Those detections become compelling as they grow in score and then generate an incident after a prescribed threshold is exceeded.

We believe that many events generate an incident and a timeline vs every incident representing a single event. This greatly reduces the time spent in lifecycle management and chasing false positives.

Quite simply, time is the asset that is most important to a security team.
- Time to detection
- Time to investigation
- Time to remediate

Key Features

Executive View
- There is always an owner for your security team that doesn't care about the details
- High level details of incidents, risks and threats identified

Score based incident generation
- Noise reduction
- Cross-layer risk generation makes for a more reliable incident. Focuses more on the score of the many vs the score of one

Incident Management
- Immutable note taking for incident reporting
- Organized operations for your SOC

Threat Hunting Scoreboard
- The Patronus Scoreboard provides a single real-time view of risk generating activities
- Timeline view for risk objects as well as risk generating events
- Drilldown to the records generating risk all in a single view

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.