PhishIQ Plus app icon

PhishIQ Plus

URL phishing enrichment for Splunk with API-based risk scoring, caching, reliability controls, and SOC dashboards; built for enterprise workflows including Microsoft Sentinel and Microsoft security services.

Built by
splunk product badge
screenshot
screenshot
screenshot
screenshot
Latest Version 1.1.1
March 28, 2026
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0
Rating

0

(0)

Log in to rate this app
Support
PhishIQ Plus support icon
Developer Supported app
PhishIQPlus Technical for Splunk enriches URL telemetry in Splunk with phishing risk intelligence from the PhishIQPlus API. The app helps SOC teams prioritize investigations by adding prediction, confidence, risk level, source, cache status, and analysis metadata to URL-related events. It supports both dynamic enrichment from live Splunk searches and controlled batch processing, with built-in retry logic, circuit breaker protection, caching, and internal telemetry dashboards for operational visibility. This app is designed for enterprise security operations, including environments that integrate with Microsoft Sentinel and Microsoft security services, to provide consistent URL risk context across detection and response workflows.

Categories

Security, Fraud & Compliance, Threat Intel

Created By

NTrigo LTD

Type

app

Downloads

2

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing