Splunk ES Content Update | Splunkbase
You are currently in preview mode for new Splunkbase! To return to the original Splunkbase, click here.
Splunk ES Content Update app icon

Splunk ES Content Update

The Splunk ES Content Update (ESCU) app delivers pre-packaged Security Content. ESCU provides regular Security Content updates to help security practitioners address ongoing time-sensitive threats, attack methods, and other security issues. Security Content consists of tactics, techniques, and methodologies that help with detection, investigation, and response. Security Content enables security teams to directly operationalize detection searches, investigative searches, and other supporting details. ESCU can generate Notable Events in Splunk Enterprise Security. Security Content also contains easy-to-read background information and guidance, for key context on motivations and risks associated with attack techniques, as well as pragmatic advice on how to combat those techniques. The analytic stories and their searches are also available at https://github.com/splunk/security-content.

Built by Splunk Inc.
splunk product badge

Latest Version 3.44.0
July 1, 2022
Compatibility
Platform Version: 9.0, 8.2, 8.1, 8.0, 7.3
Rating

5

StarStarStarStarStar

(20)

Support
Splunk ES Content Update support icon
Splunk Supported addon
Learn more
Ranking

#16

in Security, Fraud & Compliance

The Splunk ES Content Update (ESCU) app delivers pre-packaged Security Content. ESCU provides regular Security Content updates to help security practitioners address ongoing time-sensitive threats, attack methods, and other security issues. Security Content consists of tactics, techniques, and methodologies that help with detection, investigation, and response. Security Content enables security teams to directly operationalize detection searches, investigative searches, and other supporting details. ESCU can generate Notable Events in Splunk Enterprise Security. Security Content also contains easy-to-read background information and guidance, for key context on motivations and risks associated with attack techniques, as well as pragmatic advice on how to combat those techniques. The analytic stories and their searches are also available at https://github.com/splunk/security-content.

Categories

Security, Fraud & Compliance

Created By

Splunk Inc.

Type

addon

Downloads

54819

Featured in Collection

Accenture Cloud Services

Resources

Login to report this app listing