Description

Splunk ADC is a tool that helps detect and collect information about attacks on Splunk environments. It uses various data sources, such as Splunk's own logs, to create a comprehensive view of an attack. This allows administrators to quickly identify and respond to attacks.

More Information

https://github.com/splunk/attack-detections-collector