.svg?width=185&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Home"){kind=logo}
.svg?width=13&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Top Navigation - Sign in - Icon")
Splunk (Cisco)
Splunk Heavy Forwarder
Splunk Heavy Forwarder is a full Splunk Enterprise instance that can receive, parse, index, and forward data to other Splunk instances or third-party destinations. Unlike Universal Forwarders, it can parse and transform data at the source, filter events, and route data to multiple destinations based on content.
In the context of Taegis XDR integration, the Splunk Heavy Forwarder serves as a data pipeline, enabling organizations that have existing Splunk deployments to forward relevant security data to Taegis for additional correlation and detection. It supports syslog input, file monitoring, API collection, and custom data inputs, providing flexible data onboarding from diverse sources.
Sophos Products
Sophos MDR/XDR Integrations
Partner Technology
SecOps & Incident Response
Solution Category
Sophos MDR/XDR Integrations
