https://community.splunk.com/t5/Getting-Data-In/threat-intelligence-manager-as-input-in-the-inputs-conf-file/m-p/321842#M93022 <P>That stanza is managed by the <CODE>threat_intelligence_manager.py</CODE> modular input. You can read more on the Threat Intelligence framework in Splunk ES here: <A href="http://dev.splunk.com/view/enterprise-security/SP-CAAAFBC">http://dev.splunk.com/view/enterprise-security/SP-CAAAFBC</A></P> Sat, 08 Apr 2017 05:51:45 GMT llee_splunk 2017-04-08T05:51:45Z https://community.splunk.com/t5/Getting-Data-In/threat-intelligence-manager-as-input-in-the-inputs-conf-file/m-p/321841#M93021 <P>I see the following stanza in my SplunkEnterpriseSecurity app's inputs.conf file. (added by splunk professional)</P> <P>[threat_intelligence_manager://]<BR /> ... </P> <P>What is that and where is it coming from? I can't find any details on any this input in the inputsconf documentation. <A href="https://docs.splunk.com/Documentation/Splunk/6.5.3/Admin/Inputsconf" target="_blank">https://docs.splunk.com/Documentation/Splunk/6.5.3/Admin/Inputsconf</A>. Where would I find stuffs to read further about it? </P> Tue, 29 Sep 2020 13:37:24 GMT https://community.splunk.com/t5/Getting-Data-In/threat-intelligence-manager-as-input-in-the-inputs-conf-file/m-p/321841#M93021 kausar 2020-09-29T13:37:24Z https://community.splunk.com/t5/Getting-Data-In/threat-intelligence-manager-as-input-in-the-inputs-conf-file/m-p/321842#M93022 <P>That stanza is managed by the <CODE>threat_intelligence_manager.py</CODE> modular input. You can read more on the Threat Intelligence framework in Splunk ES here: <A href="http://dev.splunk.com/view/enterprise-security/SP-CAAAFBC">http://dev.splunk.com/view/enterprise-security/SP-CAAAFBC</A></P> Sat, 08 Apr 2017 05:51:45 GMT https://community.splunk.com/t5/Getting-Data-In/threat-intelligence-manager-as-input-in-the-inputs-conf-file/m-p/321842#M93022 llee_splunk 2017-04-08T05:51:45Z