Splunk Enterprise Security
22191182
3259
I have an active playbook that runs on most event types, but some get auto-closed and I would like to know if there's... by kblaine Engager in Splunk SOAR (f.k.a. Phantom) 4 hours ago 0 0 | 0 | 0 | ||
I am looking for a rest endpoint to be able to attach the source file to the event. You can do this through the brows... by rudnima7 New Member in Splunk SOAR (f.k.a. Phantom) yesterday 0 1 | 0 | 1 | ||
Hi, I am trying to install Splunk SOAR 6.0.1 for Linux. I've followed the prerequisites here: https://docs.splunk.com... by casperr New Member in Splunk SOAR (f.k.a. Phantom) yesterday 0 0 | 0 | 0 | ||
Hello friends. I had a question for you I wanted to see how I can convert an alert in Splank to IODEF format? by b3hnam New Member in Splunk Enterprise Security yesterday 0 1 | 0 | 1 | ||
Some users reported that the investigations functionality is not available for them in the Enterprise Security app. W... by szabados Communicator in Splunk Enterprise Security Wednesday 0 2 | 0 | 2 | ||
Hello together, I installed in Splunk Single Instance Deployment with version 9.0.4 the Splunk ES 7.11 via CLI. If i ... by omshanti New Member in Splunk Enterprise Security Wednesday 0 1 | 0 | 1 | ||
| stats count | eval _time="1685158808" | eval rule_title="Test notable" | eval security_domain="Network" | e... by bluewizard Explorer in Splunk Enterprise Security Monday 0 1 | 0 | 1 | ||
In Splunk Phantom 4.10 Free Community Edition, how can we disable a playbook with a status of running other than by u... by 1lovebeer New Member in Splunk SOAR (f.k.a. Phantom) Monday 0 0 | 0 | 0 | ||
Thanks in advance for your time and assistance. I have a Splunk Enterprise Security correlation search intended to tr... by Sven Engager in Splunk Enterprise Security a week ago 0 2 | 0 | 2 | ||
Hi All, Recently a question came up about notifying a client on high urgency notable events. I want to send out an au... by splunkbunk Engager in Splunk Enterprise Security a week ago 0 0 | 0 | 0 |