Extended incident visibility timeframe in management dashboard. Updated navigation menu for better dashboard accessibility.
Configuration improvements and metadata enhancements have been made.
Backend optimizations and stability improvements for source type.
Enhanced internal data processing with optimized background operations
Alarm management enhanced with refined configuration architecture.
Improved sourcetype naming conventions
Enhanced dashboard functionality for compatibility.
Minor improvements to app configuration and updated deployment instructions.
SOCRadar Incidents currently provides better configuration experience. Allow different configuration possibility to add different companies with new creation of inputs. Default index changed to socradar_incidents.
In this new release, users can now manage the status of incidents directly through the Manage Alarm Status interface. This allows for easier tracking and updating of alarm states such as OPEN or CLOSED within the Splunk UI.
Integrates SOCRadar security incidents into Splunk, providing straightforward visualization and faster security analysis. It provides clear dashboards to quickly identify and analyze threats.
This helps improve incident response speed and effectiveness
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.