Google Cloud IDS Add-on for Splunk

The Google Cloud IDS (Cloud Intrusion Detection System) Add-on for Splunk provides field extractions and Common Information Model mapping support for the Google Cloud IDS. Cloud IDS (https://cloud.google.com/intrusion-detection-system) provides cloud-native network threat detection with industry-leading security. Cloud IDS is an intrusion detection service that provides threat detection for intrusions, malware, spyware, and command-and-control attacks on your network. The Google Cloud IDS Add-on for Splunk provides configurations to interpret IDS Threat alerts and IDS Traffic data (https://cloud.google.com/intrusion-detection-system/docs/logging). See the Details tab for dependencies and setup instructions. The integration consists of mapping for IDS Threat alerts and IDS Traffic data that is collected through the Splunk Add-on for Google Cloud Platform. While this app is not formally supported, the developer can be reached at gsa-request@splunk.com. Responses are made on a best-effort basis. Feedback is always welcome and appreciated! Learn more about splunk-usergroups slack here: https://docs.splunk.com/Documentation/Community/current/community/Chat#Join_us_on_Slack