Warning
Splunkbase Classic has been deprecated and will be deactivated on February 18, 2026.
Warning

This app is archived. App archiving documentation

TA_Loki app icon

TA_Loki

Loki scanner is one of the famous yara rule scanner which have multiple usage in Incident Response and searching the environment for any indication of compromise. we decided to get benefit of Splunk capability and automate the scan activity from Splunk by creating addon to install it on agents and Application to help threat hunter and the analyst to review the result of scan more effectively

Built by
splunk product badge
Latest Version 1.0.0
April 13, 2022
Compatibility
Splunk Enterprise
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
Rating

0

(0)

Log in to rate this app
Support
TA_Loki support icon
Not Supported
Loki scanner is one of the famous yara rule scanner which have multiple usage in Incident Response and searching the environment for any indication of compromise. we decided to get benefit of Splunk capability and automate the scan activity from Splunk by creating addon to install it on agents and Application to help threat hunter and the analyst to review the result of scan more effectively

Categories

Security, Fraud & Compliance

Created By

baha mahmoud

Type

addon

Downloads

251

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing