Cisco + Splunk Integrations Add-on List

Sar · ‎05-07-2021

The table below shows the whole Cisco Security solutions + Splunk integrations add-ons. Kindly let me know if I have missed some add-ons or if there are any new updates. Thank you!

Hope this will be helpful for everyone who is looking for Splunk integrations.

You will notice here there are apps created by the community, Splunk, and Cisco internal folks. Please check the support on each app to understand where to get that support.

Product Name	Specific Add-on Name	Link	Author
Secure Endpoint (AMP4Endpoint)	CIM	https://splunkbase.splunk.com/app/3686/	Samson Nguyen
Secure Endpoint (AMP4Endpoint)	Events Input	https://splunkbase.splunk.com/app/3670/	Samson Nguyen
CESA (Cisco Endpoint Security Analytics)	Network Visibility Module (NVM) CESA Dashboard	https://splunkbase.splunk.com/app/2992/	Cisco Systems
CESA (Cisco Endpoint Security Analytics)	NVM Technology Add-On	https://splunkbase.splunk.com/app/4221/	Cisco Systems
ASA	Splunk Add-on for ASA	https://splunkbase.splunk.com/app/1620/	Splunk Inc.
ASA	Firegen Log Analyzer	https://splunkbase.splunk.com/app/3800/	Adrien Grigorof
Cloudlock	Cloudlock for Splunk	https://splunkbase.splunk.com/app/3043/	Yaron Caspy
Secure Email (ESA)	Splunk Add-on for ESA	https://splunkbase.splunk.com/app/1761/	Splunk Inc.
	MIME Decoder	https://splunkbase.splunk.com/app/5116/	Tomas Moser
	DMP/APP	https://splunkbase.splunk.com/app/5470/	Agari Data
Secure Firewall (NGFW)	Cisco FireSIGHT	https://splunkbase.splunk.com/app/1808/	Splunk Inc.
	Dashboards	https://splunkbase.splunk.com/app/4010/	Juan Jose Ponce Dominguez
	FTD sourcetype	https://splunkbase.splunk.com/app/3955/	Juan Jose Ponce Dominguez
	Enosys	https://splunkbase.splunk.com/app/4785/	Simon Sigre
	eStreamer Client (f.k.a Firepower eNcore)	https://splunkbase.splunk.com/app/3662/	Cisco Security
	Secure Firewall (f.k.a. Firepower)	https://splunkbase.splunk.com/app/4388/	Cisco Security
	PCAP	https://splunkbase.splunk.com/app/5322/	Del Castle
ISE	Splunk Add-on	https://splunkbase.splunk.com/app/1915/	Splunk Inc.
	Splunk for ISE	https://splunkbase.splunk.com/app/1589/	Jason Conger
	Technology Add-on for ACS (OLD)	https://splunkbase.splunk.com/app/1811/	Dave Shpritz
SecureX	SecureX CESA Relay	https://splunkbase.splunk.com/app/5420/	Cisco Security
	Relay Module	https://splunkbase.splunk.com/app/5605/	Cisco Security
	Threat response	https://splunkbase.splunk.com/app/4761/	Cisco Security
Secure Network Analytics (Stealthwatch)	Cisco Stealthwatch Add-on	https://splunkbase.splunk.com/app/3827/	Nadhem AlFardan
Secure Network Analytics (Stealthwatch)	Technology Add-on for Cisco Stealthwatch Data Exporter	https://splunkbase.splunk.com/app/3848/	Discovered Intelligence
Secure Workload (Tetration)	Tetration app	https://splunkbase.splunk.com/app/3632/	Cisco Systems
Secure Workload (Tetration)	Tetration add-on	https://splunkbase.splunk.com/app/3631/	Cisco Systems
Secure Malware Analytics (Threat Grid)	Threat Grid Add-On	https://splunkbase.splunk.com/app/4251/	Cisco Security
Umbrella	Umbrella Add-On	https://splunkbase.splunk.com/app/3926/	Hurricane Labs
Umbrella	Umbrella Investigate Add-on	https://splunkbase.splunk.com/app/3324/	OpenDNS Cisco
Secure Web (WSA)	Splunk Add-on for WSA	https://splunkbase.splunk.com/app/1747/	Splunk Inc.
Others	PSIRT openVuln API	https://splunkbase.splunk.com/app/5183/	Graham Morley
Others	openVuln API Query	https://splunkbase.splunk.com/app/4015/	Nathan Worsham

Thanks & regards,

Sarah