Trend Micro DDI Add-On

The Trend Micro Deep Discovery Inspector (DDI) Splunk Add-On addresses the lack of effective tools for parsing and categorizing Trend Micro DDI logs in Splunk. This add-on ensures accurate log extraction, alignment with Splunk's Common Information Model (CIM), and enhances threat detection and incident response capabilities. Developed based on official Trend Micro DDI documentation, the add-on fills a critical gap in the Splunk ecosystem and will be continuously updated, with plans to add dashboards for improved security monitoring.

Built by Ayed AbuKhass

Latest Version 1.0.0

October 20, 2024

Release notes

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0

CIM Version: 5.x, 4.x

Rating

0

(0)

Log in to rate this app

Support

Developer Supported addon

Learn more

The Trend Micro Deep Discovery Inspector (DDI) Splunk Add-On addresses the lack of effective tools for parsing and categorizing Trend Micro DDI logs in Splunk. This add-on ensures accurate log extraction, alignment with Splunk's Common Information Model (CIM), and enhances threat detection and incident response capabilities. Developed based on official Trend Micro DDI documentation, the add-on fills a critical gap in the Splunk ecosystem and will be continuously updated, with plans to add dashboards for improved security monitoring.