Splunk Enterprise and Enterprise Security

Style
text-alignment-left

Enrich Splunk with intelligence.

Harness the power of Recorded Future’s Intelligence Graph to immediately view complete context on threats from adversaries and intent, to the infrastructure they build, to the organizations they target, without ever leaving your Splunk environment.

Start a free trial

Why Recorded Future?

Recorded Future helps you to understand adversaries and their intent, what tools they are using, and who they are targeting. The Recorded Future Intelligence Graph:

  • Collects and structures adversary and victim data from text, imagery, and technical sources
  • Uses analytics to discover, analyze, and map associations across billions of entities in real time
  • Includes critical insights from our global team of world-class analysts
  • Delivers insights optimized for both user and technology workflows

Access robust intelligence directly in Splunk, with a Recorded Future integration, to prioritize responses to threats and decrease time spent manually conducting research.

Robust Out-of-the-Box Functionality

https://main--2025recordedfuturewebsite--recorded-future-website.aem.page/integrations/data/splunk-siem-functionality.json
Style
bg-color-grey-100

Detect threats

Access correlation dashboards out-of-the-box, enabling security teams to identify threats in their environment with the Recorded Future risk score provided directly within the dashboard.

Prioritize the most critical alerts in your environment with Recorded Future dashboards that:

  • Correlate Recorded Future risk lists with events in your Splunk environment
  • Identify the most critical threats by bringing in risk scores that hit a minimum level, eliminating non-critical events from the dashboard

Triage alerts

Access robust intelligence inside of Splunk with enrichment functionalities, either through ad hoc lookup or by pivoting from the correlation dashboard. The Recorded Future integration for Splunk provides similar information from an Intelligence Card, so analysts never have to leave the Splunk platform to access everything they need to know about an IP, domain, hash, URL, CVE, or malware. Within these pages analysts can access risk scores, risk rules, evidence for severity, technical links including MITRE ATT&CK mapping, and insights from our analyst group, Insikt.

Bring Recorded Future alerts into Splunk

Use the Recorded Future alerting dashboard to view and triage your Recorded Future alerts right in Splunk. All alerts set up in Recorded Future can be accessed and viewed in Splunk. Recorded Future alerts cover a wide spectrum of use cases including: typosquat detection, brand mentions on sensitive sources, and critical vulnerabilities related to your technology stack, trending malware and threat actors related to specific industries.

Features

Visualize and pivot through evidence-based relationships between indicators to better understand adversaries and their methods

Map to MITRE ATT&CK Framework

Map to MITRE ATT&CK Framework

Understand adversarial tactics and techniques used with tagged information to expedite investigations directly within Splunk

Professional Services Engagements

Professional Services Engagements

Engage with our professional services team to develop solutions for custom use cases including custom dashboards, alerts, or risklists, alert detail ingestion, and integrations with our Third-Party and Identity Intelligence modules.

Use case specific correlation dashboards

Use case specific correlation dashboards

Recorded Future offers threat lists containing IOC related to specific use cases. These threat lists can be used to correlate against logs and feeds in Splunk to pinpoint threats related to client security priorities. Use cases include: Malware detection, TOR node detention, Detect brute force attacks, and more!

Free trial

Interested in exploring how you can use Recorded Future’s integration with your Splunk environment to accelerate threat detection and response? Recorded Future now offers a 30-day free trial with Splunk Enterprise or Enterprise Security. Sign up today to gain access to:

  • A comprehensive view of your threat landscape with an unprecedented quantity and variety of sources from the open and dark web, as well as exclusive technical sources
  • Real-time risk scores and context on IPs, domains, URLs, hashes, and malware for faster alert triage
  • High-confidence, out-of-the-box risk lists for detection of previously undetected threats
  • Dashboards

Start a free trial

Ready to get started?

  • Book a demo.
    • Get a customized walkthrough to see how Recorded Future intelligence can address your organization’s unique challenges.
  • Start a free trial.
    • Experience the power of unmatched visibility from Recorded Future and Splunk.
  • Learn about our integration ecosystem.
    • Discover the benefits of pre-built integrations and flexible APIs that connect our solution with your existing tools and workflows.
Style
Bg-color-grey-100, bg-rd-radius-tl, bg-rd-radius-tr