Splunk Tech Talks
Deep-dives for technical practitioners.

Splunk Phantom App Building the Easy Way

melissap
Splunk Employee
Splunk Employee

View our Tech Talk: Security Edition, Splunk Phantom App Building the Easy Way 

Splunk Phantom apps provide a way to extend the Phantom platform by adding connectivity to third party security technologies in order to run actions. Given the broad set of technologies that can be orchestrated during cyber response, apps allow users and partners to add their own custom functionality within Phantom. Apps are written in Python, and in order to automate successfully, you must have at least one person that understands how apps work, how to troubleshoot an app, how to modify an app, and how to build a new app from scratch. 

This talk will walk you through the open source Phantom Test Harness you can use to greatly simplify the Phantom App building/testing process. 

Get Updates on the Splunk Community!

Detecting Remote Code Executions With the Splunk Threat Research Team

WATCH NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If exploited, ...

Enter the Splunk Community Dashboard Challenge for Your Chance to Win!

The Splunk Community Dashboard Challenge is underway! This is your chance to showcase your skills in creating ...

.conf24 | Session Scheduler is Live!!

.conf24 is happening June 11 - 14 in Las Vegas, and we are thrilled to announce that the conference catalog ...