Welcome to the new Splunkbase! To return to the old Splunkbase, .
Collections
Apps
Submit an app
Warning

This app is archived.

McAfee ESM app icon

McAfee ESM

This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions

Built by
soar product badge
Latest Version 3.0.0
February 24, 2022
Compatibility
Not Available
Platform Version: 7.1, 7.0, 6.4, 6.3, 6.2, 6.1, 5.2, 5.1
Rating

0

(0)

Log in to rate this app
Support
McAfee ESM support icon
Not Supported
Ranking

#22

in SIEM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions

Supported Actions

  • test connectivity: Validates the credentials
  • list fields: List the fields available to be used in filters
  • on poll: Ingest Events or Alarms from ESM
  • list watchlists: List the watchlists configured in ESM
  • get events: Get the events associated with a correlated event ID
  • get watchlist: Get the details for a specific watchlist and the values in that watchlist as configured in the ESM
  • update watchlist: Add an entry to a specific watchlist as configured in the ESM

Categories

Created By

SOAR Community

Source Code

Type

connector

Downloads

3,836

Licensing

Splunk Answers

Resources

Log in to report this app listing