Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Dragos OT Add-On for Splunk app icon

Dragos OT Add-On for Splunk

The Dragos OT Add-On bridges the IT/OT divide by bringing OT cybersecurity data from the Dragos Platform and Dragos WorldView into Splunk Enterprise Security. This integration brings a set of Dragos capabilities into Splunk, enhancing visibility of OT environments by providing complete asset discovery, threat detection, and vulnerability management as well as enabling effective incident response. This provides users in-depth and context rich ICS/OT asset visibility that analyzes multiple data sources including protocols, network traffic, data historians, host logs, asset characterizations, and anomalies to provide unmatched visibility of your ICS/OT environment. In addition to the Add-On's ability to provide visibility into your OT environment, it can also connect to Dragos WorldView to download Indicators of Compromise (IOCs) and integrate them into Splunk Enterprise Security's Threat Intelligence framework for streamlined threat intelligence.

Built by Dragos Inc
splunk product badge
Latest Version 1.1.6
April 25, 2025
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
CIM Version: 5.x, 4.x, 3.x
Rating

0

(0)

Log in to rate this app
Support
Dragos OT Add-On for Splunk support icon
Developer Supported addon
Ranking

#28

in Network Security
The Dragos OT Add-On bridges the IT/OT divide by bringing OT cybersecurity data from the Dragos Platform and Dragos WorldView into Splunk Enterprise Security. This integration brings a set of Dragos capabilities into Splunk, enhancing visibility of OT environments by providing complete asset discovery, threat detection, and vulnerability management as well as enabling effective incident response. This provides users in-depth and context rich ICS/OT asset visibility that analyzes multiple data sources including protocols, network traffic, data historians, host logs, asset characterizations, and anomalies to provide unmatched visibility of your ICS/OT environment. In addition to the Add-On's ability to provide visibility into your OT environment, it can also connect to Dragos WorldView to download Indicators of Compromise (IOCs) and integrate them into Splunk Enterprise Security's Threat Intelligence framework for streamlined threat intelligence.

Categories

Created By

Dragos Inc

Type

addon

Downloads

1,261

Licensing

Splunk Answers

Resources

Login to report this app listing