All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Work Instructions in SPLUNK

willadams
Contributor
‎05-18-2020 08:54 PM

I was looking at apps such as "Splunk Security Essentials" and "ATP Threat hunting" available in SPLUNK base. The apps have a great mechanism that can be user driven by clicking on tiles to open additional information. I was wondering how these are created and whether there any apps available that allows these to be created. My thought is around having a work instruction available in SPLUNK where some one has an event that they need to investigate and instead of going elsewhere be able to reference the information through a panel such as the 2 apps do above.

Tags (1)
0 Karma
Reply

Sfry1981
Communicator
‎05-19-2020 05:18 AM

the best place to start is https://dev.splunk.com/enterprise/ this should get you started on that journey

0 Karma
Reply

iainsmart
Engager
‎05-19-2020 01:47 AM

You could create a dashboard with HTML panels for the instruction text. Then using depends/rejects in the SimpleXML for the dashboard and set/unset tokens to show/hide panels depending on what is required by the workflow.

See: https://docs.splunk.com/Documentation/Splunk/latest/Viz/ContextualDrilldown

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...