Splunk Enterprise Security

Splunk App for Enterprise Security: Where is the threatlist stored?



Retrieving the threatlist through the URL in Enterprise Security, I would like to know if is stored in csv.

0 Karma

Splunk Employee
Splunk Employee


have a look in the /opt/splunk/etc/apps/SA-ThreatIntelligence/lookups directory.

0 Karma
Get Updates on the Splunk Community!

There's No Place Like Chrome and the Splunk Platform

Watch On DemandMalware. Risky Extensions. Data Exfiltration. End-users are increasingly reliant on browsers to ...

The Great Resilience Quest: 5th Leaderboard Update

The fifth leaderboard update for The Great Resilience Quest is out >> 🏆 Check out the ...

Devesh Logendran, Splunk, and the Singapore Cyber Conquest

At this year’s Splunk University, I had the privilege of chatting with Devesh Logendran, one of the winners in ...