Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
wordfence monitoring app app icon

wordfence monitoring app

## architecture The data is created as the well known wordpress WAF plugin "wordfence" by Defiant Inc detects attack patterns on the website itself. It is then transferred to the splunk HTTP Event Collector (HEC). There it can be correlated with other security information relevant for your organization or its processes. The ingestion via python skript + HEC (see ![gitlab](https://gitlab.com/splunk-apps-uns/wfence)) does work even for *-as-a-service offerings, where you are not allowed to work with the splunk universal forwarder. ## Use Cases The wfence App for Splunk provides dashboards to visualize attack data in Splunk, announcing critical situations such as: * missing patches * Potential administrator login takeover * Brute force attacks on the login pages * Potential integrity loss on the website * attack distribution patterns over certain users over time * distribution of attacking clients based on IP Geolocation services

Built by Christian Breitenstrom
splunk product badge
Latest Version 0.0.2
October 3, 2023
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0
Rating

0

(0)

Log in to rate this app
Support
wordfence monitoring app support icon
Developer Supported app
## architecture The data is created as the well known wordpress WAF plugin "wordfence" by Defiant Inc detects attack patterns on the website itself. It is then transferred to the splunk HTTP Event Collector (HEC). There it can be correlated with other security information relevant for your organization or its processes. The ingestion via python skript + HEC (see ![gitlab](https://gitlab.com/splunk-apps-uns/wfence)) does work even for *-as-a-service offerings, where you are not allowed to work with the splunk universal forwarder. ## Use Cases The wfence App for Splunk provides dashboards to visualize attack data in Splunk, announcing critical situations such as: * missing patches * Potential administrator login takeover * Brute force attacks on the login pages * Potential integrity loss on the website * attack distribution patterns over certain users over time * distribution of attacking clients based on IP Geolocation services

Categories

Created By

Christian Breitenstrom

Source Code

Type

app

Downloads

273

Licensing

Splunk Answers

Resources

Login to report this app listing