Splunk Enterprise Security

Is the GuardDuty Add-On supported on Splunk Version 7.2?

cody_richardson
Path Finder

Is the GuardDuty Add-on officially supported on Splunk version 7.2? If not, are there plans to update it so it is supported?

Thank you.

0 Karma
1 Solution

kchamplin_splun
Splunk Employee
Splunk Employee

It's supported on 7.2, however, there is more guidance here on best practices for working with GuardDuty data:
https://www.splunk.com/blog/2018/02/22/serving-it-up-with-aws-and-splunk-aws-serverless-application-...

View solution in original post

0 Karma

cody_richardson
Path Finder

Thank you, kchamplin!

0 Karma

kchamplin_splun
Splunk Employee
Splunk Employee

It's supported on 7.2, however, there is more guidance here on best practices for working with GuardDuty data:
https://www.splunk.com/blog/2018/02/22/serving-it-up-with-aws-and-splunk-aws-serverless-application-...

0 Karma
Get Updates on the Splunk Community!

Detecting Brute Force Account Takeover Fraud with Splunk

This article is the second in a three-part series exploring advanced fraud detection techniques using Splunk. ...

Buttercup Games: Further Dashboarding Techniques (Part 9)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Buttercup Games: Further Dashboarding Techniques (Part 8)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...