ProActive Threat Analysis app icon

ProActive Threat Analysis

The ProActive File Threat Analysis for Splunk enables organizations to detect and respond to high-confidence indicators of human insider risk by classifying SHA-1 file hashes against NetClean’s ProActive Threat Intelligence API.

Built by
splunk product badge
screenshot
screenshot
screenshot
screenshot
Latest Version 1.0.0
July 4, 2025
Compatibility
Splunk Enterprise
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0
Rating

0

(0)

Log in to rate this app
Support
ProActive Threat Analysis support icon
Developer Supported addon
The ProActive File Threat Analysis for Splunk enables organizations to detect and respond to high-confidence indicators of human insider risk by classifying SHA-1 file hashes against NetClean’s ProActive Threat Intelligence API. This add-on is designed to support security, compliance, and forensic teams by identifying known Child Sexual Abuse Material (CSAM) within enterprise environments. A positive classification represents a zero false positive signal and should be treated as a high-priority alert within existing incident response workflows. By integrating this add-on into Splunk, organizations can operationalize CSAM detection as part of their broader threat detection and insider risk management strategy.

Categories

SIEM, Threat Intel

Created By

Kim Andersson

Type

addon

Downloads

55

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing