Latest version: 1.6

Insider Threat Connector

Sample dashboards are included that allow you to drill into your data using any axis   Next »
You can also browse sessions and filter activity by key terms   Next »
When you see a session you're interested in, you can drill into it to see a session detail view.   Next »
If that's not enough, there's a powerful interface for generating arbitrary reports. Run any report you like then save it so your team can run it later.   Next »

App Details

Latest version: 1.6
Last updated: November 26th, 2018
First released: June 28th, 2012
Splunk Cloud vetted: yes

This app brings the power of Splunk together with the power of ObserveIT’s software “ObserveIT Enterprise”, to give you views of all activity patterns across all your production systems, and the ability to drill in anywhere to see not just full details but actual screen-captured video of all administrative actions taken on those production systems.

If you’re an existing Splunk customer interested in ObserveIT’s solution, or if you’re an existing ObserveIT customer interested in Splunk, know that BOTH Splunk and ObserveIT offer free versions of their product as well as Enterprise Trial versions.  Whichever side you’re on,  bring the two worlds together by downloading the full version of the free Insider Threat Connector app today.

Next steps