Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
WatchGuard Endpoint Add-on for Splunk app icon

WatchGuard Endpoint Add-on for Splunk

The WatchGuard Endpoint Add-on for Splunk enables Splunk to collect and parse data from WatchGuard EPDR and Panda AD360. This app normalizes Endpoint logs ingested from SIEM Feeder into CIM-compliant datamodels for use with Splunk Enterprise Security and other Splunk Enterprise apps. You can also consume this data using the separate WatchGuard Visibility App for Splunk.

Built by WatchGuard Technologies
splunk product badge
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0
CIM Version: 5.x
Rating

0

(0)

Log in to rate this app
The WatchGuard Endpoint Add-on for Splunk enables Splunk to collect and parse data from WatchGuard EPDR and Panda AD360. This app normalizes Endpoint logs ingested from SIEM Feeder into CIM-compliant datamodels for use with Splunk Enterprise Security and other Splunk Enterprise apps. You can also consume this data using the separate WatchGuard Visibility App for Splunk.

Categories

Created By

WatchGuard Technologies

Type

addon

Downloads

171

Licensing

Splunk Answers

Resources

Login to report this app listing