Latest Version 2.2.2
September 5, 2025
Carbon Black Defense
This app integrates with an instance of Carbon Black defense to run investigative and generic actions
Built by
Compatibility
SOAR On-Prem, SOAR Cloud
Platform Version: 8.4, 8.0, 7.2, 7.1, 7.0, 6.4, 6.3, 6.2, 6.1, 6.0, 5.5, 5.4, 5.3, 5.2
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#16
in Endpoint
This app integrates with an instance of Carbon Black defense to run investigative and generic actions
Supported Actions
- test connectivity: Validate the supplied API Key
- list devices: List devices connected to CB Defense
- update device: Change the policy of a device connected to CB Defense
- list policies: List policies that exist on CB Defense
- add policy: Create a new policy on CB Defense
- delete policy: Delete a policy on CB Defense
- add rule: Add a rule to a policy on CB Defense
- delete rule: Delete a rule from a policy on CB Defense
- list processes: List processes that match supplied filter criteria
- list events: List events that match supplied filter criteria
- get event: Get information about an event
- get alert: Get information about an alert
- get notifications: Get notifications from CB Defense
- update policy: Updates an existing policy on the Carbon Black Defense server
- get policy: Retrieves an existing policy from the Carbon Black Defense server
Categories
Endpoint
Created By
Splunk LLC
Source Code
GitHub(Opens new window)Type
connector
Downloads
28,066
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing