Does theSplunkAdd-onfor Bit9 CarbonBlackformat the CB JSON md5 field to either Malware.file_hash or Email.file_hash? hPer theCarbonBlack (CB) API reference and JSON response example, the CB J...
We need to collect VMWare CarbonBlack Cloud events to Splunk (Cloud) We use this app https://splunkbase.splunk.com/app/5332 on heavy forwarder to configure inputs. If we have a d...
...Cb Protection App forSplunk built by CarbonBlack? Or should I go fortheSplunkAdd-onfor Bit9 CarbonBlack built by Splunk?
I just need the data parsed and tagged correctly to the CIM d...
I am having difficulty configuring the Cb Defense Add-OnforSplunkon a heavy forwarder, which is forwarding to my Splunk cloud environment. I have followed the configuration guides and I have c...
I have been having issues with my splunk where thesplunk service stops randomly. here are some logs from splunkd.log right before it went down.
Mostly uses Splunk with CarbonBlackadd-on to g...