Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
ThreatConnect
This app integrates with the ThreatConnect platform to provide various hunting actions in addition to threat ingestion
Built by Splunk LLC
Compatibility
Not Available
Platform Version: 6.4, 6.3
Rating
0
(0)
Log in to rate this app
Ranking
#3
in Threat Intel
This app integrates with the ThreatConnect platform to provide various hunting actions in addition to threat ingestion
Supported Actions
- on poll: Callback action for the on_poll ingest functionality
- test connectivity: Validate the asset configuration for connectivity
- list owners: List the owners visible with the configured credentials
- post data: Create an indicator and post it to ThreatConnect
- hunt ip: Hunt an IP and retrieve any available information
- hunt file: Hunt a file hash and retrieve available information
- hunt email: Hunt an email and retrieve available information
- hunt domain: Hunt a domain and retrieve available information
- hunt url: Hunt a URL and retrieve available information
Categories
Created By
Splunk LLC
Source Code
Type
connector
Downloads
25,235
Licensing
Splunk Answers
Resources
Login to report this app listing