Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Windows Security Operations Center app icon

Windows Security Operations Center

Hey - the app has been finally upgraded for Splunk 7.x, 8.x and 9.x. This applications summarizes and visualizes all security relevant information in your Windows environment. It supports both Windows 2003 (since these refuse to go away) and Windows 2008 log type, even in mixed environments as well as Windows 2012+ servers. The application offers monitoring of successful and failed Windows AD and NTLM authentications as well as RDP and console services. Additionally, dashboards showing Windows host based firewall activities are available as well as tracking of software installations and Directory Services access and modifications. Comments or questions? Please contact us at infigoapps@infigo.is.

Built by Bojan Zdrnja
splunk product badge

Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 5.x, 4.x
Rating

0

(0)

Log in to rate this app
Hey - the app has been finally upgraded for Splunk 7.x, 8.x and 9.x. This applications summarizes and visualizes all security relevant information in your Windows environment. It supports both Windows 2003 (since these refuse to go away) and Windows 2008 log type, even in mixed environments as well as Windows 2012+ servers. The application offers monitoring of successful and failed Windows AD and NTLM authentications as well as RDP and console services. Additionally, dashboards showing Windows host based firewall activities are available as well as tracking of software installations and Directory Services access and modifications. Comments or questions? Please contact us at infigoapps@infigo.is.

Categories

Created By

Bojan Zdrnja

Type

app

Downloads

11,340

Resources

Login to report this app listing