Splunk SOAR
- 20 Jun 2024
- 1 Minute to read
- Print
- DarkLight
Splunk SOAR
- Updated on 20 Jun 2024
- 1 Minute to read
- Print
- DarkLight
Article summary
Did you find this summary helpful?
Thank you for your feedback
Silent Push has a Splunk SOAR app that allows users to utilize Silent Push data within Splunk workflows.
The Splunk SOAR integration is available to users with a valid Silent Push API key
Available Splunk SOAR actions
- Forward and Reverse DNS lookups across all record types
- Enrichment for domain, IPv4, and IPv6
- Reputation for domains, IPs, nameservers, ASNs, and subnets
- Certificates
- ASNs
- Density
- Live Scan
- Live Screenshot
- Search Scan Data
- Get Indicators of Future Attack (Enterprise Only)
Integrating Splunk SOAR with Silent Push
Download the app on Splunkbase here
Generate a Silent Push API Key
Log in to your Splunk SOAR Platform
Navigate to the
Home
Select
Apps
Search for
Silent Push
Click
CONFIGURE NEW ASSET
Navigate to the
Asset Info
tabEnter a
Name
andDescription
Navigate to
Asset Settings
Enter your Silent Push
API key
Save
the assetTest the connectivity of the Splunk SOAR server to Silent Push by clicking the
TEST CONNECTIVITY
button
Was this article helpful?