ExtraHop RevealX App for Splunk

The ExtraHop RevealX App for Splunk receives ExtraHop RevealX NDR detection data from the Splunk event collector to build detection dashboards and to generate detection event alerts in Splunk based on correlation rules. RevealX NDR is the core cybersecurity module of the RevealX platform. It enables organizations to reduce risk and identify threats other tools like EDR and SIEM miss. By ingesting and analyzing network telemetry, RevealX NDR provides OSI Layer 2–Layer 7 visibility and real-time detection while providing streamlined investigation workflows for faster, more confident response across on-premises, remote, hybrid, and multicloud environments.

Built by ExtraHop Networks

Latest Version 1.0.2

March 28, 2025

Release notes

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1

Rating

0

(0)

Log in to rate this app

Support

Developer Supported app

Learn more

The ExtraHop RevealX App for Splunk receives ExtraHop RevealX NDR detection data from the Splunk event collector to build detection dashboards and to generate detection event alerts in Splunk based on correlation rules. RevealX NDR is the core cybersecurity module of the RevealX platform. It enables organizations to reduce risk and identify threats other tools like EDR and SIEM miss. By ingesting and analyzing network telemetry, RevealX NDR provides OSI Layer 2–Layer 7 visibility and real-time detection while providing streamlined investigation workflows for faster, more confident response across on-premises, remote, hybrid, and multicloud environments.