Hi,
I am wondering if it is possible to have my adaptiveresponseactions append fields to the notable which triggered them. I am in a situation where my adaptiveresponseaction returns a link, a...
Hey all,
Looking for any better documentation/steps on integrating Splunk Stream app withEnterpriseSecurity.
Running Stream v. 7.1.1
Running EnterpriseSecurity v. 4.7
OS/Environment: A...
...are visible. Our use case requires multiple adaptiveresponse to actions be executed during notable event creation.
All of these actions (Including the missing entries) can be executed using t...
Is there any way to get a developer license of Splunk IT Service Intelligence (ITSI) and/or SplunkEnterpriseSecurity (ES)?
I would love to adapt my apps to fit into ITSI/ES and add adaptiveresponse...
I know that it is possible to embed an AdaptiveResponse hyperlink into the next steps section of SplunkEnterpriseSecurity (ES), however I'm wondering if you can embed plain old hyperlinks to o...
Hi in my company they recently migrated to Spunk(EnterpriseSecurity) from QRador so installation part is done rule creation is done
and Vulnerability center , asset data feed,user data feed,t...
...vents (e.g., using threat intelligence feeds) Adding adaptiveresponseactions Recommended Splunkbase apps and add-ons for ES use cases Anything else you’d like to learn! Please submit y...
...: Automate containment and responseactions
Optimized Workflows: Automate complete TDIR life cycle
Optimized Workflows: Federate access and analytics
Configuring Windows event logs for Enterprise...