Latest Version 3.0.0
February 24, 2022
This app is archived. App archiving documentation
McAfee ESM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions
Built by
Compatibility
SOAR On-Prem
Platform Version: 8.4, 8.0, 7.2, 7.1, 7.0, 6.4, 6.3, 6.2, 6.1, 5.2, 5.1
Rating
0
(0)
Log in to rate this app
Support
Not Supported
Ranking
#25
in SIEM
This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions
Supported Actions
- test connectivity: Validates the credentials
- list fields: List the fields available to be used in filters
- on poll: Ingest Events or Alarms from ESM
- list watchlists: List the watchlists configured in ESM
- get events: Get the events associated with a correlated event ID
- get watchlist: Get the details for a specific watchlist and the values in that watchlist as configured in the ESM
- update watchlist: Add an entry to a specific watchlist as configured in the ESM
Categories
SIEM
Created By
SOAR Community
Source Code
GitHub(Opens new window)Type
connector
Downloads
3,836
Licensing
artistic2(Opens new window)Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing