Send ExtraHop alerts to Remedy, Splunk

Hi,

Has anyone managed to send ExtraHop alerts to BNC Remedy or Splunk?

Thanks

Yes, we can send alerts to Splunk (and likely BNC remedy). Alerts can be sent to any platform that supports our ODS targets

  • HTTP
  • Kafka
  • MongoDB
  • Syslog
  • Raw data

There is a trigger event called ALERT_RECORD_COMMIT that fires when an alert goes off. The Solutions Architecture team has done a lot of these in the past.

If you need more detailed help with this please reach out to your Customer Success rep and we’ll figure out how to move forward from there.

HI, have you seen that ExtraHop is generating duplicate events?