Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
CCX Add-on for Palo Alto Networks (PAN IOT) app icon

CCX Add-on for Palo Alto Networks (PAN IOT)

This technical add-on enables customers to connect to Palo Alto Networks IoT Security API so that the alert events, detections, and vulnerabilities data can be continually streamed to their Splunk environment. About Us: CyberCX is the Australia’s greatest force of cyber security. Our highly skilled professional services team operates a 24x7 on-shore security operations centre (SOC) servicing corporate and public sector organisations across Australia and New Zealand, specialising in Security Operations services leveraging Splunk. Description: The CCX Add-on for Palo Alto Networks Products was built using a large dataset and endeavours to be the most CIM compliant comprehensive field extraction TA available for; - IoT Security - API inputs connection provided Fully compatible with Splunk Enterprise and Splunk Cloud, built by an Ops team for Ops teams. **Features:** - This TA currently supports logtypes tagged under the following CIM datamodels: Alert, Endpoint, Network Traffic, Intrusion Detection (IDS), and Vulnerabilities.

Built by Henrique Linsmeyer
splunk product badge
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1
CIM Version: 5.x, 4.x
Rating

0

(0)

Log in to rate this app
This technical add-on enables customers to connect to Palo Alto Networks IoT Security API so that the alert events, detections, and vulnerabilities data can be continually streamed to their Splunk environment. About Us: CyberCX is the Australia’s greatest force of cyber security. Our highly skilled professional services team operates a 24x7 on-shore security operations centre (SOC) servicing corporate and public sector organisations across Australia and New Zealand, specialising in Security Operations services leveraging Splunk. Description: The CCX Add-on for Palo Alto Networks Products was built using a large dataset and endeavours to be the most CIM compliant comprehensive field extraction TA available for; - IoT Security - API inputs connection provided Fully compatible with Splunk Enterprise and Splunk Cloud, built by an Ops team for Ops teams. **Features:** - This TA currently supports logtypes tagged under the following CIM datamodels: Alert, Endpoint, Network Traffic, Intrusion Detection (IDS), and Vulnerabilities.

Categories

Created By

Henrique Linsmeyer

Type

addon

Downloads

120

Licensing

Splunk Answers

Resources

Login to report this app listing