Join the Conversation
- Find Answers
- :
- Premium Solutions
- :
- Splunk Enterprise Security
- :
- Re: Unable to install PhishTank app in Splunk ES
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Nimish Doshi,
We are unable to install the phish tank app in our splunk instance. We reached to our support team and seems that the requested app isn't compatible with the version of splunk running on the splunk cloud instance. (Our version - 7.0.2.1) Splunk Vendor recommended reaching out to the Apps developer in order to have them update the compatibility of the app.
Is there anything that you could help us on this? Any suggestions on how we proceed further in installing the app with the current version? Or Splunk version needs to be upgraded or phishtank available with compatability?
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
The Splunk Cloud app team has a strict set of guidelines that they must adhere to when installing apps in order to ensure that all Splunk Cloud instances maintain their security. If they're saying that the app isn't compatible, it's probably because the app is currently vulnerable to exploitation in some way.
Basically, the app must be updated to meet all cloud standards before they can safely install it on your instance. They probably sent you an email containing a list of incompatibilities that the developer needs to address and unless these issues are fixed the app will not be installed.
Once the issues are fixed Splunk will re-evaluate the app for compatibility and as long as all their tests come back clean they should get it installed for you relatively quick.
I wish I had better news for you. 😞
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
The Splunk Cloud app team has a strict set of guidelines that they must adhere to when installing apps in order to ensure that all Splunk Cloud instances maintain their security. If they're saying that the app isn't compatible, it's probably because the app is currently vulnerable to exploitation in some way.
Basically, the app must be updated to meet all cloud standards before they can safely install it on your instance. They probably sent you an email containing a list of incompatibilities that the developer needs to address and unless these issues are fixed the app will not be installed.
Once the issues are fixed Splunk will re-evaluate the app for compatibility and as long as all their tests come back clean they should get it installed for you relatively quick.
I wish I had better news for you. 😞
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Lacastillo,
Thank you very much for the response. We didnt get any email about the list of incompatibilities that the app developer needs to be addressed. I will followup with your team again on this.
Upcoming Webinar: Unmasking Insider Threats with Slunk Enterprise Security’s UEBA
.conf25 technical session recap of Observability for Gen AI: Monitoring LLM ...
A Season of Skills: New Splunk Courses to Light Up Your Learning Journey
