Splunk Enterprise Security

Is there a Technology Add-on for Sophos UTM/Firewall SG 430 that is CIM compliant to use with Splunk Enterprise Security?

hamzeh_khosravi
New Member

I have a some problem with “Sophos UTM/Firewall SG 430” because I searched in splunkbase.splunk.com to find the TA for that, but Splunk does not provide Technology Add-ons for this that are CIM-compatible to use with the Splunk Enterprise Security application.

Can anyone help me?

0 Karma
1 Solution

LukeMurphey
Champion

You might want to try looking the Add-on Builder (https://splunkbase.splunk.com/app/2962/ ). This allows you to create an add-on with an easy to use interface.

View solution in original post

LukeMurphey
Champion

You might want to try looking the Add-on Builder (https://splunkbase.splunk.com/app/2962/ ). This allows you to create an add-on with an easy to use interface.

Get Updates on the Splunk Community!

Splunk Training for All: Meet Aspiring Cybersecurity Analyst, Marc Alicea

Splunk Education believes in the value of training and certification in today’s rapidly-changing data-driven ...

The Splunk Success Framework: Your Guide to Successful Splunk Implementations

Splunk Lantern is a customer success center that provides advice from Splunk experts on valuable data ...

Investigate Security and Threat Detection with VirusTotal and Splunk Integration

As security threats and their complexities surge, security analysts deal with increased challenges and ...