The FortiNDR Cloud Add-on for Splunk allows administrators to incorporate the network telemetry data collected and analyzed by FortiNDR Cloud into their Splunk deployment. This app leverages the fully RESTful APIs to interact with the cloud backend to introduce specific data sets into Splunk. With this app, raw events can also be retrieved from the AWS S3 Buckets to import specific network events and all the associated metadata into Splunk.