search

Splunk SOAR integration (QUX)

Contains

  • Introduction

    • Document and Release Information

  • Terminology

  • Architecture

  • Implementation

    • Vectra Pre-requisites

    • Splunk Pre-requisites

    • Downloading and Installing the App

    • Implementation Checklist

    • Initial Configuration of New Asset

  • Operational Components

    • Events

    • Artifacts

    • Attributes

    • Actions

    • Playbooks

  • Operations

    • Incident Creation Philosophy

    • Orientation

    • Workflow

    • Running Actions - General

    • Running Actions - Resolve Assignment

  • Working with Playbooks

  • Known Limitations

  • Troubleshooting

  • Worldwide Support Contact Information

Attachments

file-pdf
2MB
Splunk SOAR Integration Guide for Vectra NDR.pdf
PDF
arrow-up-right-from-squareOpen
PreviousSplunk SOAR integration (RUX)NextServiceNow SIR SOAR integration (RUX)

Last updated

Was this helpful?