Latest Version 1.1.2
September 11, 2025
This app is archived. App archiving documentation
Datalake2Splunk
This app provides the ability to ingest Orange Datalake threat intel given an api token. It replaces former app Datalake Connect (https://splunkbase.splunk.com/app/5463) to be able to pull data using a query hash obtained from Datalake thus having all filters available. A new version of Datalake API will be available during September 2025. Thus, a new addon has been created to allow a quick switch. https://splunkbase.splunk.com/app/7982 This app will be archived duting October 2025.
Built by
Compatibility
Splunk Enterprise
Platform Version: 9.4, 9.3, 9.2
Rating
5
(1)
Log in to rate this app
Support
Not Supported
This app provides the ability to ingest Orange Datalake threat intel given an api token.
It replaces former app Datalake Connect (https://splunkbase.splunk.com/app/5463) to be able to pull data using a query hash obtained from Datalake thus having all filters available.
A new version of Datalake API will be available during September 2025. Thus, a new addon has been created to allow a quick switch. https://splunkbase.splunk.com/app/7982
This app will be archived duting October 2025.
Categories
SIEM, Threat Intel
Created By
Splunkapps Cybersoc OCD
Type
addon
Downloads
545
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing