Latest Version 3.0.3
September 5, 2025
Tanium Threat Response
This app supports various generic and investigate actions on Tanium Threat Response
Built by
Compatibility
SOAR On-Prem, SOAR Cloud
Platform Version: 8.4, 8.0, 7.2, 7.1, 7.0, 6.4, 6.3, 6.2, 6.1
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#4
in Network Device
This app supports various generic and investigate actions on Tanium Threat Response
Supported Actions
- test connectivity: Validate the asset configuration for connectivity using supplied configuration
- list connections: Get a list of connections
- create connection: Create a new live endpoint connection
- get endpoint: Get information for an endpoint
- close connection: Close an endpoint connection
- delete connection: Delete an endpoint connection
- create snapshot: Capture a new snapshot
- list snapshots: Get a list of all snapshots
- delete snapshot: Delete a snapshot
- get process: Get information for a process
- get process tree: Get process tree for a process instance
- get events: Build a query to get events of a certain type from a connection
- get events summary: Returns counts of given event type
- list files: List downloaded files in Tanium Threat Response
- save file: Save a file from a remote connection to Tanium Threat Response
- delete file: Delete a file evidence from disk and Tanium Threat Response database
- get file: Download a file from Tanium Threat Response to the SOAR Vault
- upload intel doc: Upload intel document to Tanium Threat Response
- start quick scan: Scan a computer group for hashes in intel document
- list alerts: List alerts with optional filtering
Categories
Network Device
Created By
Splunk LLC
Source Code
GitHub(Opens new window)Type
connector
Downloads
9,643
Licensing
Apache License 2.0(Opens new window)Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing