Splunk application for ActiveTrust Cloud

THE GAME HAS CHANGED

Introducing Infoblox Universal DDI Management^TM

Watch the launch to discover the new era of management for critical network services. Watch Now

Infoblox

Technical Articles

Best Practices

Splunk application for ActiveTrust Cloud

Best Practices

Article Options

Subscribe to RSS Feed

Mark as New

Mark as Read

Bookmark

Subscribe

Printer Friendly Page

Report Inappropriate Content

Splunk application for ActiveTrust Cloud

NJeanselme
Adviser

Posts: 15

Splunk application for ActiveTrust Cloud

NJeanselme on ‎01-10-2018 10:20 PM ‎07-11-2022 09:53 AM samanna

Hello,

I have just published a Splunk application for ActiveTrust Cloud.

This application allows to:
- get ActiveTrust Cloud logs into Splunk using the REST API introduced with ATC 2.0
- filter it efficiently with full drill down support based on the time, threat property, threat class, source IP, domain name, query type and much more
- get context from Infoblox Dossier threat intelligence.

Mandatory requires ActiveTrust Cloud.
Optionally requires Dossier for threat intelligence

https://splunkbase.splunk.com/app/3850/

Some screenshots

Any feedback welcome.

Regards

Nicolas

Permalink

2 Kudos

Back to Blog

Newer Article

Older Article

Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Showing results for

Search instead for

Did you mean:

PRODUCTS

SOLUTIONS

COMPANY

SUPPORT

© Infoblox. All rights reserved.

Feedback

Terms & Conditions

Legal

Privacy Policy