Compatibility

This app is compatible with Splunk Enterprise 9.0.x or higher and Splunk Cloud Platform. For product details, see Splunk Enterprise and Splunk Cloud Platform.

Features

• Supported by Splunk.
• Offers a new, simplified configuration experience.
• Supports Splunk Attack Analyzer data and visualizes the data using pre-built dashboards.
• The new Usage Overview dashboard contains usage insights to help highlight the value received from Splunk Attack Analyzer.
• Show trends in submissions over time, top submissions, and the breakdown between API and UI submissions.
• Shows insights into how the user is targeted by showing the top brands impersonated, malware families, and phish kits to help users strengthen their security posture.