Splunk® Add-on for Splunk Attack Analyzer

User Guide

About the Splunk Add-on for Splunk Attack Analyzer

The Splunk Add-on for Splunk Attack Analyzer retrieves data from completed jobs and the associated forensics from Splunk Attack Analyzer. Splunk Attack Analyzer detects and analyzes potential security threats.

You can perform the following tasks with the Splunk Add-on for Splunk Attack Analyzer:

Follow these steps to retrieve data from Splunk Attack Analyzer:

  1. Purchase Splunk Attack Analyzer.

    You must purchase Splunk Attack Analyzer to use the add-on.

  2. Download the Splunk Add-on for Splunk Attack Analyzer from Splunkbase.
  3. Review the Splunk Add-on for Splunk Attack Analyzer installation requirements. See Installation requirements and version dependencies.
  4. Install the Splunk Add-on for Splunk Attack Analyzer.
  5. Configure the Splunk Add-on for Splunk Attack Analyzer.
  6. After installing the add-on, you can download the Splunk App for Splunk Attack Analyzer from Splunkbase to view dashboards that contain metrics about your Splunk Attack Analyzer data.
Last modified on 30 August, 2023
  Source types for the Splunk Add-on for Splunk Attack Analyzer

This documentation applies to the following versions of Splunk® Add-on for Splunk Attack Analyzer: 1.0.0, 1.1.0, 1.1.1, 1.2.0


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters