ASGER PLATFORM app icon

ASGER PLATFORM

Real-time SIEM integration for ASGER PAM by SOBE YAZILIM. Monitor privileged sessions (SSH, RDP, VNC, database, browser isolation), track vault credential access, detect authentication threats, and ensure compliance with 8 dashboards, 8 alerts, and full CIM mapping across 10 audit categories.

Built by
splunk product badge
screenshot
screenshot
screenshot
screenshot
Latest Version 4.0.1
May 12, 2026
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.3, 10.2, 10.1, 10.0, 9.4, 9.3, 9.2, 9.1, 9.0
CIM Version: 4.x
Rating

0

(0)

Log in to rate this app
Support
ASGER PLATFORM support icon
Developer Supported app
Ranking

#45

in Artificial Intelligence

#50

in Identity Management
ASGER PAM Add-on for Splunk provides real-time visibility into privileged access activity across your organization. Built by SOBE YAZILIM, ASGER PAM is a Privileged Access Management platform that secures, monitors, and audits all privileged sessions including SSH, RDP, VNC, Telnet, database proxy (DataNex), browser isolation (Prism), and virtual desktops (HubSpace). This add-on addresses three critical security operations challenges: Privileged Session Monitoring — Track who connected where, as which privileged account, using which protocol, and from which origin (web console, desktop connector, or native client). Monitor the full session lifecycle from authentication through disconnect with session-level correlation across events. Credential & Vault Access Control — Monitor every credential retrieval, field-level unlock, clipboard copy, password rotation, and checkout/checkin operation. Detect credential harvesting patterns, rotation failures, and unauthorized vault access with pre-built alerts. Compliance & Audit Readiness — Pre-built dashboards for regulatory compliance reporting (ISO 27001, SOC 2, PCI-DSS, KVKK/GDPR). Every event includes an HMAC-SHA256 integrity hash for tamper-proof audit trails. Full CIM compliance enables native integration with Splunk Enterprise Security. The add-on includes 8 dashboards (Overview, Sessions, Authentication, Vault, Administration, Connector/ZTNA, Workflow/JIT Access, Compliance), 8 security alerts (brute force detection, unusual target access, rotation failures, after-hours activity, mass credential access, policy changes, JIT denials, integrity validation), 3 scheduled reports (daily session summary, weekly vault access, monthly compliance), and 9 search macros. Supports 3 input formats: JSON (recommended, zero-config extraction), CEF, and LEEF. Maps 10 audit categories — workspace sessions, authentication, vault, connector/ZTNA, administration, inventory, workflow, policy, fabric, and system — to Splunk CIM data models (Authentication, Change, Network Sessions).

Categories

Artificial Intelligence, Identity Management

Created By

Murat BÜLBÜL

Type

app

Downloads

1

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing