Product News & Announcements
All the latest news and announcements about Splunk products. Subscribe and never miss an update!

ICYMI - Check out the latest releases of Splunk Edge Processor

courtlynwri
Splunk Employee
Splunk Employee

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor. 

  • HEC Receiver authorization of HTTP requestsEdge Processor administrators can now configure HTTP event collector (HEC) tokens to authenticate HTTP requests for data coming from a HEC source. This enhances the overall security of the HEC data path as it prevents unwanted data from coming into Edge Processor pipelines.

courtlynwri_0-1712956034094.png

  • Point and Click UI for Lookups: Edge Processor Lookups allow configuring pipelines to enrich event data using CSV and KV store lookups defined on the search head linked to Edge Processor. Through the UI, users can now seamlessly build the lookup command without having to manually write an SPL2 statement to support a wide array of use cases such as detecting indicators of compromise, resolving host IPs, and more. 

courtlynwri_2-1712956078638.png

courtlynwri_1-1712956051274.png

  • Point and Click UI for Cryptographic Functions: Edge Processor now supports a seamless GUI-based building experience for hashing functions (SHA1, SHA256, SHA512 and MD5), which no longer requires the manual authoring of SPL2 hashing statements. These functions allow users to support use cases such as masking sensitive information and monitoring of file/data integrity by hashing it. With the User Interface users can now rebuild the _raw event and just send through _raw with the hashed data through interactive point-and-click interface, without manually typing the commands in the pipeline definition. 

courtlynwri_3-1712956105318.png

To learn more about Edge Processor’s HEC, Lookups and Cryptographic capabilities (and more!), check out Splunk Docs.

Get Updates on the Splunk Community!

.conf24 | Day 0

Hello Splunk Community! My name is Chris, and I'm based in Canberra, Australia's capital, and I travelled for ...

Enhance Security Visibility with Splunk Enterprise Security 7.1 through Threat ...

 (view in My Videos)Struggling with alert fatigue, lack of context, and prioritization around security ...

Troubleshooting the OpenTelemetry Collector

  In this tech talk, you’ll learn how to troubleshoot the OpenTelemetry collector - from checking the ...