Add-on for Splunk

Get the most from your Splunk investment. Integrate Netwrix Auditor with Splunk through the RESTful API with this free add-on.

This add-on works only in combination with Netwrix Auditor, so make sure you have Netwrix Auditor installed.

Augment Splunk Output Data with Actionable Details

The combined solution delivers a clear and complete user activity trail that contains who, what, when and where information as well as before and after values.

Investigate Threat Patterns Faster

Actionable audit data enables you to investigate what pattern led to a security incident so you can better determine how to prevent it from happening again.

Maximize the ROI of your SIEM

AuditAssurance™ technology turns disparate arrays of logs into a single record. Then Netwrix Auditor feeds Splunk with this granular data, reducing the volume of indexed data and making your SIEM more cost effective.

Quick-Start Guide
Free eBook

Want more help getting started with the add-on? Read the Quick-Start Guide.

Want more help getting started with the add-on?
Read the Quick-Start Guide.

Review detailed instructions for installing the Add-on for Splunk.
Learn how to configure it properly.

Download Free Quick-Start Guide (.pdf)

Complete Visibility into What’s Happening in Splunk

Complete Visibility into What’s Happening in Splunk

This eBook explains how integrating Netwrix Auditor with Splunk will give you a clear and complete user activity trail that contains who, what, when and where information, as well as details about Group Policy attribute changes, maximizing the value of your SIEM investment.

Download Free eBook