Unified App: Validate download of indicators - Splunk Intelligence Management (TruSTAR)
In this video, we’ll show you how to validate that your Unified App has successfully downloaded observables that have been identified as potential Indicators of Compromise from Splunk Intelligence Management to Splunk Enterprise or Splunk Enterprise Security KV Stores.
Continue to the next section of the video path. Each step is explained in a short video:
Additional resources
- Video Demo: Splunk Intelligence Management + Splunk Enterprise Security Overview and Demo
- Docs: Unified App Installation Guide
- Docs: Unified App User Guide
- Docs: Unified App FAQs
- App: TruSTAR Unified