Posted on November 18, 2020
We’re pleased to announce the release of the VMware Carbon Black Cloud App for Splunk.
This app provides an updated solution for customers to access their Carbon Black Cloud Endpoint and Workload features and data within the Splunk console. Out-of-the-box, this app provides holistic visibility into the state of your endpoints and workloads through customizable dashboards and alert feeds in Splunk.
The app is available for download from Splunkbase here. Depending on your installation, the Input Add-on or Technology Add-on may also be required.
Notable features include:
Additional enhancements are planned for release in early 2021. These enhancements include full support for Audit & Remediation, Audit Logs, and additional adaptive response actions.
Customers who are currently using one of the legacy Carbon Black Cloud Splunk integrations are encouraged to adopt this application in order to leverage the latest features and capabilities.
For questions, please reach out to the Carbon Black Developer Community.