Latest Version 1.5.6
December 17, 2025
Warning
Splunkbase Classic has been deprecated and will be deactivated on February 18, 2026.
Analyst1
The Analyst1 App for Splunk is an add-on designed for use by existing Analyst1 customers.
Built by
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.1, 10.0, 9.4, 9.3, 9.2, 9.1, 9.0
Rating
0
(0)
Log in to rate this app
Support
Developer Supported addon
Ranking
#31
in Threat Intel
The Analyst1 App for Splunk is an add-on designed for use by existing Analyst1 customers.
This add-on has two main functions:
1. Brings enrichment data around observables/indicators of compromise from Analyst1 into Splunk, providing lookup tables for correlation data.
2. Sends network/host log data from Splunk to Analyst1, correlating syslogs into hits against IOCs
Categories
Security, Fraud & Compliance, Threat Intel
Created By
Analyst1 Team
Type
addon
Downloads
1,314
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing