CCX Add-on for Palo Alto Networks (PAN IOT)

This technical add-on enables customers to connect to Palo Alto Networks IoT Security API so that the alert events, detections, and vulnerabilities data can be continually streamed to their Splunk environment. About Us: CyberCX is the Australia’s greatest force of cyber security. Our highly skilled professional services team operates a 24x7 on-shore security operations centre (SOC) servicing corporate and public sector organisations across Australia and New Zealand, specialising in Security Operations services leveraging Splunk. Description: The CCX Add-on for Palo Alto Networks Products was built using a large dataset and endeavours to be the most CIM compliant comprehensive field extraction TA available for; - IoT Security - API inputs connection provided Fully compatible with Splunk Enterprise and Splunk Cloud, built by an Ops team for Ops teams. **Features:** - This TA currently supports logtypes tagged under the following CIM datamodels: Alert, Endpoint, Network Traffic, Intrusion Detection (IDS), and Vulnerabilities.