Add-on for Splunk

Get the most from your Splunk investment. Integrate Netwrix Auditor with Splunk through the RESTful API with this free add-on.
This add-on works only in combination with Netwrix Auditor, so make sure you have Netwrix Auditor installed.
Augment Splunk Output Data with Actionable Details
The combined solution delivers a clear and complete user activity trail that contains who, what, when and where information as well as before and after values.
Investigate Threat Patterns Faster
Actionable audit data enables you to investigate what pattern led to a security incident so you can better determine how to prevent it from happening again.
Maximize the ROI of your SIEM
AuditAssurance™ technology turns disparate arrays of logs into a single record. Then Netwrix Auditor feeds Splunk with this granular data, reducing the volume of indexed data and making your SIEM more cost effective.
  • Review detailed instructions for installing the Add-on for Splunk.
  • Learn how to configure it properly.

This eBook explains how integrating Netwrix Auditor with Splunk will give you a clear and complete user activity trail that contains who, what, when and where information, as well as details about Group Policy attribute changes, maximizing the value of your SIEM investment.