×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
zargaran
Observer
Member since: ‎12-18-2017
‎06-01-2025
Community Statistics
Posts 3
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎12-18-2017
Activity Feed
View All

Problem in using Cortex as Response Action in Splu...

by in Splunk Enterprise Security
‎05-23-2022 03:12 AM
‎05-23-2022 03:12 AM
Hi geeks, I integrated the TheHive and Cortex with Splunk ES for getting some alerts after triggering the correlation search rule. According to the attached Image-01, please help me for filling the correct values for "Data field name" and "Datatype field name". Also, Do I have to specify the exact name according to what is in the Cortex to identify the "Analyzers"?   Image-01:   Image-02:   image-03:   Regards, Amir ... View more

Re: Netflow Analytical App Does not show any data

by in All Apps and Add-ons
‎03-27-2018 03:32 PM
‎03-27-2018 03:32 PM
Please try to use some other port than 10514, for example 10515 : [udp://10515] sourcetype = flowintegrator disabled = 0 and configure the Optimizer to send to 10515. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-01-2025 12:53 AM