splunk-microsoft-security-ta-setup
CommunityRender, configure, and validate MS Security TA.
Authorchambear2809
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill enables onboarding, rendering, configuration, and validation of the Splunk Add-on for Microsoft Security data (Splunk_TA_MS_Security) within Splunk environments, reducing manual integration effort and ensuring consistent configuration.
Core Features & Use Cases
- Automated onboarding and configuration of Defender inputs, including incidents, alerts, machines, simulations, Event Hub streaming, and threat intelligence datasets.
- Render-first workflow that produces inputs, macros, runbooks, and validation SPL, along with readiness documentation for Splunk Cloud and on-prem deployments.
- Use Case: You need to onboard Defender data into Splunk and validate the ingest path in a repeatable, auditable manner.
Quick Start
Render the Microsoft Security TA assets for your Splunk environment and begin the installation and validation workflow.
Dependency Matrix
Required Modules
None requiredComponents
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: splunk-microsoft-security-ta-setup Download link: https://github.com/chambear2809/splunk-cisco-skills/archive/main.zip#splunk-microsoft-security-ta-setup Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.