What is the CylancePROTECT Application for Splunk? Skip Navigation

What is the
CylancePROTECT
Application for
Splunk
?

CylancePROTECT
identifies and blocks malware and cyber threats before they can affect a device.
BlackBerry
uses machine learning techniques to effectively render threats useless while using a minimal amount of system resources.
CylancePROTECT Desktop
lives in the
Cylance
console, which is a cloud-based management console that allows you to view various threat-related events, manage device policies to configure agents on endpoints, and manage global lists for quarantined and safe files. For more information about
CylancePROTECT
, see What is CylancePROTECT Desktop?
The
CylancePROTECT
Application for
Splunk
is a plugin within your
Splunk
environment that pulls data from the
Cylance
services in your
Cylance
console to aggregate preconfigured, but customizable, dashboards to monitor, track, and analyze threat data and activity. You can also install the
CylancePROTECT
Add-on for
Splunk
Enterprise to further enhance the application's data optimization and collection. This add-on should be installed on
Splunk
indexers and forwarders that do not consume data from the threat data report.