Splunk Enterprise Security × Tines

Integrating Tines’ automation capabilities with Splunk Enterprise Security enhances threat detection and response by streamlining workflows and reducing manual intervention.

Pre-built templates

With Tines, you can easily take any action that has a defined API. We've already pre-built some of the most popular ones for you, so you can build quickly.

Updates a specific investigation object with the given ID
Returns all information about the investigation object type
Gets information about a specific investigation object with the given ID
Get Investigation Type
Deletes a specific investigation object with the given ID
Create an investigation object of the given object type
Update Notable Status and Add Comment in Splunk Enterprise Security
Create Search to Retrieve Notable Event ID in Splunk Enterprise Security

Build your own connections

With Tines, you can easily take any action that has a defined API using an HTTP request. To build even more quickly, copy a cURL command and paste it into the storyboard.

cURL request

curl -v -X GET --location "https://api.nasa.gov/neo/rest/v1/neo/browse?api_key=DEMO_KEY" -H 'Content-Type: application/json'

Paste in your Tines story

Full workflow examples

Explore pre-built workflows for Splunk Enterprise Security. Use them for inspiration or as a starting point to build your custom automation solution.

Trusted by industry innovators

CanvaCode42CoinbaseElasticGitLabIntercom
MarsMcKessonOak Ridge National LaboratoryOpenTableSnowflakeReddit

Built by you,
powered by Tines

Already have an account? Log in.