Threatbook-NGTIP app icon

Threatbook-NGTIP

This APP provides Splunk with a solution to connect to external threat intelligence data, specifically integrating Threatbook-NGTIP intelligence data. During log analysis and threat assessment, it offers security analysts rich evidentiary information.

Built by
splunk product badge
Latest Version 2.5.1
February 12, 2026
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 9.2, 8.2
CIM Version: 6.x, 5.x
Rating

0

(0)

Log in to rate this app
Support
Threatbook-NGTIP support icon
Not Supported
Increasingly, security analysts rely on Splunk as a Security Operations and Decision Center. In the log analysis process, threat intelligence is used as one of the decision factors for alert triage and incident response, so it is necessary to integrate external intelligence. This APP provides Splunk with a solution to connect to external threat intelligence, enabling intelligence queries on logs, enriching context with threat intel, and writing the results to a specified data index to facilitate security analysts’ log search, analysis, and subsequent response actions.

Categories

Network Security, Threat Intel

Created By

bin xu

Type

app

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing