ThreatBook TI app icon

ThreatBook TI

ThreatBook Cloud API for Splunk integrates ThreatBook threat intelligence with Splunk, enabling security teams to enrich IPs, domains, URLs, and file hashes with real-time threat intelligence. The app provides SPL search commands and automation capabilities to help analysts quickly investigate indicators and enhance security monitoring workflows with ThreatBook intelligence.

Built by
splunk product badge
Latest Version 0.9.0
March 12, 2026
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.2, 10.1, 10.0, 9.4, 9.3
Rating

0

(0)

Log in to rate this app
Support
ThreatBook TI support icon
Not Supported
ThreatBook Cloud API for Splunk integrates ThreatBook threat intelligence with Splunk, enabling security teams to enrich IPs, domains, URLs, and file hashes with real-time threat intelligence. The app provides SPL search commands and automation capabilities to help analysts quickly investigate indicators and enhance security monitoring workflows with ThreatBook intelligence.

Categories

SIEM, Threat Intel

Created By

Hui Wang

Type

app

Downloads

3

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing