...
The Data Theorem Splunk application is a private Splunk App distributed by Data Theorem, Inc. for API Security. It it design to analyze Splunk logs for API attacks, API abuses, and API threats. It analyzes events as defined by the Splunk Common Information Model (CIM) add-on and sends the resulting access logs to Data Theorem for analysis. All customer data stays “On-Prem” or in your cloud, where only the metadata on events is shown on the Data Theorem portal. The data flow diagram is below:
...
System Requirements
...
Download the Data Theorem Splunk App from the Data Theorem portal
Copy the Data Theorem API Key
Install the app on Splunk deployment
When prompted, paste the API Key from the Data Theorem portal
...