NetScout Threat Intelligent App
The Splunk App for Netscout allows the user to gather benefits of Netscout threat intelligence on Splunk data
Home > Case Studies > NetScout Threat Intelligent App
Executive Summary
The Splunk App for Netscout combines with Splunk Add-on
allows user to use power of Netscout threat intelligence on Splunk data.
NETSCOUT Systems, Inc. is a provider of application and network performance management products. Headquartered in Westford, Massachusetts, NETSCOUT serves enterprises community, government agencies and telecommunications service providers.
Business Challenge
Netscout Threat Intelligence enables customers to directly benefit from the depth and breadth of threat vault data collection and analysis and offers this visibility through various platforms. Netscout Threat Vault contains more than billion threat samples and thousands of indicators, to use this enormous amount of data + Splunk’s existing security logs to detect threat and identify threat in real-time was the main challenge.
Customer Solution
The Splunk App for Netscout combines with Splunk Add-on for Netscout allows user to use power of Netscout threat intelligence on Splunk data. Netscout worked with Crest Data to provide the power to Splunk user to analyse and detect potential vulnerabilities and threats to the system via incidents present in the Splunk logs. The Splunk App also contents Overview Dashboard for user to look at the overview of the incidents happened and their respective threat events it found in Splunk. At the same time allows the user to drilldown to see previous sample threats available in Netscout Threat Vault allowing user to go in depth of the potential threat events.