Hi Splnker;
Is there way for Splunk take action from Kaspersky, means if appeared hash in splunk from Kaspersky how splunk take action for remove or block this hash from Kaspersky?
appreciate your support
Best Regards
@aalhabbash1
You can create an Alert and which will execute a script. This script will communicate with KasperSky. I'm not sure KasperSky provides any API or command line to take any action. but you can achieve it like this.