pushpythonscheduledhand-curated
Elastic Security → Splunk SOAR (Phantom)
Forward Elastic Security detection alerts to Splunk SOAR
Polls the Elastic Security detection engine for new alerts and creates matching containers + artifacts in Splunk SOAR, with rule context preserved.
elasticsplunk-soardetectionpushmoderate
Use case
Forward new Elastic Security detection alerts to Splunk SOAR every 10 minutes as containers, preserve rule name and severity, dedupe by alert _id
No code yet. Click below to run the Rinox pipeline. The result is saved to this library entry — every future visitor gets it instantly.
Useful?
Used by 0 teams · Viewed 4 times · Last validated 5/17/2026