About the Splunk Add-on for Microsoft Security
|Vendor Products||Microsoft 365 Defender, Defender for Endpoint|
|Visible in Splunk Web||Yes, this add-on contains configuration|
The Splunk Add-on for Microsoft Security collects incidents and related information from Microsoft 365 Defender and alerts from Microsoft Defender for Endpoint.
Download the Splunk Add-on for Microsoft Security from Splunkbase at https://splunkbase.splunk.com/app/6207.
Hardware and software requirements
This documentation applies to the following versions of Splunk® Supported Add-ons: released