http://www.splunkbase.com/feed/apps.rss/Fields/Security Latest SplunkBase Applications filtered by Fields in category Security Splunk Tue, 04 Nov 2008 19:06:16 +0000 http://www.splunkbase.com/apps/Fields/Security/app:Splunk+for+Network+Security 8a48676a95f0f7c3a5c567aa9f159b0e The Splunk Network Security application offers a set of reports, saved searches, and dashboards, as well as corresponding alerts that you can use to monitor your firewalls, intrusion detection and prevention systems, as well as operating systems. will Mon, 20 Oct 2008 06:47:07 +0000 http://www.splunkbase.com/apps/Fields/Security/app:Splunk+for+F5+Networks 9ef92f993a8cdc041a0fd73079111c68 Working with F5 we have built our first Splunk for F5 application which contains, saved searches, reports and dashboards for the F5 application firewall logs (ASM) and FirePass. There is a Splunk globe application included which is configured to plot the location of attackers logged in the ASM data and contains violation and web application info. rataide Tue, 16 Sep 2008 19:43:30 +0000 http://www.splunkbase.com/apps/Fields/Security/app:Splunk+for+tcpdump 3e648d0b4dd134ececd859d7c4ca11b3 This application will allow you to collect data from a tcpdump standard output directly into Splunk, it will also perform the necessary field extractions based on the Common Information Model This application is compliant with the 3.3.x standard. araitz Wed, 19 Dec 2007 01:31:17 +0000 http://www.splunkbase.com/apps/Fields/Security/app:Sonicwall+Firewall 744dc2c0b92faad8233e35bda951406b This bundle performs field extractions for sonicwall TZ 170 without the UTM/IDS modules raffy Thu, 06 Dec 2007 02:11:28 +0000 http://www.splunkbase.com/apps/Fields/Security/app:Common+Event+Format+-+Field+Extractions e9265533eac559bd2aa0f535fcb64c09 CEF or the common event format is an event interoperability standard, defining a common syntax for communication among log generating devices and applications. This is an add-on to extract the fields of CEF messages.