Splunk® Security Content

Release Notes

This documentation does not apply to the most recent version of Splunk® Security Content. For documentation on the most recent version, go to the latest release.

What's new

Enterprise Security Content Updates v4.15.0 was released on November 2, 2023. It includes the following enhancements:

New analytic stories

New analytics

Updated analytics

Other Updates

Migrated to GitLab as the primary DevSecOps platform to better integrate ESCU testing with other Splunk products such as Enterprise Security. Splunk Security Content is also available on Github as an open source for Splunk customers and other open-source contributors.

Updated Gitlab CI pipelines to integrate code Content Control (contentctl), which is an innovative application that streamlines the Splunk Security Content creation lifecycle through the validation of YAML files, building the ESCU application, testing detection against attack data, and facilitating automatic deployment to Splunk servers. For a comprehensive understanding and further information, refer to the contentctl readme section.

Last modified on 16 November, 2023
  What's in Splunk Security Content

This documentation applies to the following versions of Splunk® Security Content: 4.15.0

Acrobat logo Download manual
Acrobat logo Download this page

Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters