Splunk Add-on for Cisco FireSIGHT | Splunkbase
You are currently in preview mode for new Splunkbase! To return to the original Splunkbase, click here.
Splunk Add-on for Cisco FireSIGHT app icon

Splunk Add-on for Cisco FireSIGHT

***This add-on is no longer supported. All customers are recommended to migrate to Cisco Firepower and utilize the Cisco Secure eStreamer Client (f.k.a Firepower eNcore) Add-On for Splunk. (https://splunkbase.splunk.com/app/3662/)*** The Splunk Add-on for Cisco FireSIGHT (formerly Splunk Add-on for Cisco Sourcefire) leverages data collected via Cisco eStreamer to allow a Splunk software administrator to analyze and correlate Cisco Next-Generation Intrusion Prevention System (NGIPS) and Cisco Next-Generation Firewall (NGFW) log data and Advanced Malware Protection (AMP) reports from Cisco FireSIGHT and Snort IDS through the Splunk Common Information Model. You can then use the mapped data with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.

Built by Splunk Works
splunk product badge

Latest Version 3.3.2
July 25, 2022
Compatibility
Platform Version: 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
Rating

2

StarStarStarStarStar

(3)

Support
Splunk Add-on for Cisco FireSIGHT support icon
Not Supported
Learn more

***This add-on is no longer supported. All customers are recommended to migrate to Cisco Firepower and utilize the Cisco Secure eStreamer Client (f.k.a Firepower eNcore) Add-On for Splunk. (https://splunkbase.splunk.com/app/3662/)*** The Splunk Add-on for Cisco FireSIGHT (formerly Splunk Add-on for Cisco Sourcefire) leverages data collected via Cisco eStreamer to allow a Splunk software administrator to analyze and correlate Cisco Next-Generation Intrusion Prevention System (NGIPS) and Cisco Next-Generation Firewall (NGFW) log data and Advanced Malware Protection (AMP) reports from Cisco FireSIGHT and Snort IDS through the Splunk Common Information Model. You can then use the mapped data with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.

Categories

Created By

Splunk Works

Type

addon

Downloads

16618

Resources

Login to report this app listing