Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Carbon Black Defense app icon

Carbon Black Defense

This app integrates with an instance of Carbon Black defense to run investigative and generic actions

Built by Splunk LLC
soar product badge
Compatibility
Not Available
Platform Version: 6.4, 6.3, 6.2, 6.1, 6.0, 5.5, 5.4, 5.3, 5.2
Rating

0

(0)

Log in to rate this app
Ranking

#13

in Endpoint
This app integrates with an instance of Carbon Black defense to run investigative and generic actions

Supported Actions

  • test connectivity: Validate the supplied API Key
  • list devices: List devices connected to CB Defense
  • update device: Change the policy of a device connected to CB Defense
  • list policies: List policies that exist on CB Defense
  • add policy: Create a new policy on CB Defense
  • delete policy: Delete a policy on CB Defense
  • add rule: Add a rule to a policy on CB Defense
  • delete rule: Delete a rule from a policy on CB Defense
  • list processes: List processes that match supplied filter criteria
  • list events: List events that match supplied filter criteria
  • get event: Get information about an event
  • get alert: Get information about an alert
  • get notifications: Get notifications from CB Defense
  • update policy: Updates an existing policy on the Carbon Black Defense server
  • get policy: Retrieves an existing policy from the Carbon Black Defense server

Categories

Created By

Splunk LLC

Source Code

Type

connector

Downloads

25,639

Licensing

Splunk Answers

Resources

Login to report this app listing