All Apps and Add-ons

Can IBM AppScan integrate with Splunk?

R_B
Path Finder

Hello! I wanted to know if IBM AppScan can integrate with Splunk. Mainly, is there a way to ingest vulnerabilities from an IBM AppScan into Splunk? I don't see a Splunk add-on for AppScan and I haven't found any questions about this on the answer forums.

Tags (2)
0 Karma
1 Solution

ragedsparrow
SplunkTrust
SplunkTrust

From what I've found, there's nothing pre-built as an "easy solution". According to this question it can be done using the AppScan SDK.

View solution in original post

ragedsparrow
SplunkTrust
SplunkTrust

From what I've found, there's nothing pre-built as an "easy solution". According to this question it can be done using the AppScan SDK.

R_B
Path Finder

Thanks for the quick reply! I see though. Seems like it's possible, but not easy. Have you seen anywhere if this has been done by somebody with Splunk yet?

0 Karma

ragedsparrow
SplunkTrust
SplunkTrust

I have not. I think most users integrate into QRadar, which has a direct integration, but nothing to Splunk that I've seen yet.

There is a git repository that uses the Splunk REST API to send messages from the IBM Integration Bus found here. Currently it looks like the IBM developer network is having issues right now, so I can't really search it.

R_B
Path Finder

I see, surprised nobody has tried it yet. Unless they have and just haven't posted anything about it. Would be interesting to do though. Oh that's good to know, thank you for the info!

0 Karma
Get Updates on the Splunk Community!

Last Chance to Submit Your Paper For BSides Splunk - Deadline is August 12th!

Hello everyone! Don't wait to submit - The deadline is August 12th! We have truly missed the community so ...

Ready, Set, SOAR: How Utility Apps Can Up Level Your Playbooks!

 WATCH NOW Powering your capabilities has never been so easy with ready-made Splunk® SOAR Utility Apps. Parse ...

DevSecOps: Why You Should Care and How To Get Started

 WATCH NOW In this Tech Talk we will talk about what people mean by DevSecOps and deep dive into the different ...