We installed SA-SPLICE application (and mongodb ) on our Splunk enterprise. We have configured threat intelligence using URL "http://hailataxii.com". The diskand current load utilization is shooting to more than 90% whenever the IOCs are enabled.
Can someone please help us identify the as what the issue is and due which of the elements (mongodb, SA-SPLICE or hailataxii.com)
Also, if anyone else is facing the same issue kindly comment
↧