Hi at all,
I have to configure an Enterprise Security and one of the sources is FireEye.
I found in Splunkbase an Add-on CIM 4.x compliant that seems to be the correct one but I found that it was archived!
Does anyone know why it's archived and if I can use it (or it's better to choose another one) on Splunk 8.1.1 and ES 4.6.1?
Thanks.
Ciao.
Giuseppe