Splunk Enterprise Security Certified Admin — Question 47

What do threat gen searches produce?

Answer options

• A. Threat correlation searches.
• B. Threat intel in KV Store collections.
• C. Events in the threat_activity index.
• D. Threat notables in the notable index.

Correct answer: C

Explanation

Threat gen searches specifically generate events that are recorded in the threat_activity index, making option C the correct choice. The other options refer to different types of data or outputs that do not directly result from threat gen searches.