Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an app
CSNF Splunk TA app icon

CSNF Splunk TA

Summary: Use the Splunk Add-on for CSNF to ingest security events normalized to the Cloud Security Notification Framework (CSNF). The Splunk CSNF Add-on offers support for multiple Cloud providers and integrates with your existing Splunk security landing zone to deliver powerful security searches, dashboards and analytics, allowing you to secure your multi-Cloud security practice in minutes.

Built by Peter Campbell
splunk product badge
Latest Version 1.1.0
June 12, 2024
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
CIM Version: 5.x, 4.x, 3.x
Rating

0

(0)

Log in to rate this app
Support
CSNF Splunk TA support icon
Developer Supported addon
Summary: Use the Splunk Add-on for CSNF to ingest security events normalized to the Cloud Security Notification Framework (CSNF). The Splunk CSNF Add-on offers support for multiple Cloud providers and integrates with your existing Splunk security landing zone to deliver powerful security searches, dashboards and analytics, allowing you to secure your multi-Cloud security practice in minutes. Features: Mappings for AWS GuardDuty, Microsoft Security Center and Oracle Cloudguard security events. GCP SCC event integration is coming soon. With a single click, implement multi-cloud security searches into Splunk Enterprise or Enterprise Security Filter to identify all security types by threat categories, keywords, sourcetypes, or kill chain phases CSNF advanced data model management to simplify administration

Categories

Created By

Peter Campbell

Type

addon

Downloads

416

Licensing

Splunk Answers

Resources

Log in to report this app listing