Lacework App

Enable API calls to Lacework and view vulnerability data through built-in dashboards. Built-in dashboards include: Vulnerability Center, Compliance, and CVE Finder - Vulnerability Center displays an overview of vulnerabilities found, including number of vulnerabilities found today, total number of vulnerabilities, top 10 vulnerabilities, vulnerabilities by severity & status - Compliance displays detailed information on a specific account type & account name. This includes both compliant and non-compliance resources and their severity, status, rule, and ID, etc., as well as the overview on category and status. (Account type supported: AWS, GCP, and Azure) - CVE Finder provides a dropdown to select a certain CVE ID and shows further information about it. Currently, this app is only stable for Splunk Enterprise - we are working to ensure that it is compatible with Splunk Cloud.