All Apps and Add-ons

Discussions

Thread Info

Help with OSSIM

Hi can you help me, i need to configure splunk with OSSIM, so that splunk send logs to OSSIM any doc? Mercii

by Engager in

App for Twitter Data: How to change the api call to add URL arguments?

I downloaded the App for Twitter Data. As of now, the script stream_tweets.py is feeding live twitter data into my Sp...

by Path Finder in

REST API Issue - Exception performing request

I am trying to pull data from Azure using REST API. Have installed REST API App https://apps.splunk.com/app/1546/ on ...

by Builder in

Splunk App for Windows Infrastructure: How to populate panels in the app from Windows data in custom indexes?

I have my windows data in custom indexes (windowze) And the panels of the Windows infrastructure app 1.0.4 are not...

by Splunk Employee in

splunk add oneshot behavior

We have loaded a 16GB file using oneshot from the command line of a universal forwarder. When the UF was restarted, t...

by Splunk Employee in

How to create a chart line overlay to display median duration by hour on a stacked column graph?

I have a search like this: index=wilee sourcetype=foo OR sourcetype=foo2 | transaction fields="acme,coyote" max...

by Path Finder in

Splunk DB Connect - KeyError 'Elements' on setup

I just installed a new copy of splunk and immediately installed the DB Connect app after initial setup. I am getting ...

by Path Finder in

Splunk Add-on for McAfee: How to add McAfee ePO HIPS descriptions to searches?

So I noticed that the lookup tables that come with this do NOT include the descriptions of the HIPS events. Below are...

by Builder in

Sideview Utils: Can the events module be configured to only show the fields selected and not the _raw events?

I want to only show fields in the events module is this possible ?

by Path Finder in

Splunk for Symantec: Why am I getting messages "The lookup table 'networkservice' does not exist. It is referenced by configuration 'cisco:..."?

Has anyone else seen these messages in the Splunk for Symantec app: The lookup table 'networkservice' does not exi...

by Influencer in

How to fix errors in Splunk_TA_ipfix/default/eventgen.conf

"splunk btool check --debug" command shows the following errors. We have splunk 6.21 and Splunk_TA_ipfix 5.02. Any id...

by New Member in

Can the Splunk for iSeries - AS400 app be used with Splunk Free?

Hello, is the iSeries - AS400 app usable also in splunk free version? thank you

by New Member in

How do I index .csv files from a C drive?

I have downloaded a lot of historical .csv files from my Palo Alto for historical reporting. Problem is I dont know h...

by New Member in

Does it supports Splunk Cloud?

Tripwire Enterprise App for Splunk Enterprise is brilliant, however the cloud instance communicating to on-premise tr...

by Engager in

SA-ldapsearch issue with group members with accents

Hi, I'm encountering an issue with SA-ldapsearch (version 1.1.6) where ldapgroup bugs out when group members have ...

by Explorer in

Will sendresults work in splunk free license ?

Hi Guys, Will sendresults work in splunk free license ? I see this error raise splunk.LicenseRestriction LicenseR...

by Communicator in

Timout 504 with large result sets

I do consume a filter and specify a few fields but i only get one event with error="". Doing the same search from ...

by SplunkTrust in

Add-on for JIRA: How to add multiple fields to initial JQL_Query?

Hi, I'm attempting to use a standard JQL_Query to filter my JIRA issues down by project and summary before perfor...

by Path Finder in

Hurricane Labs Add-On for QUALYS: Why is no data coming in from API?

I changed the app settings on the indexer (which is also the search head) to include api credentials and all proper s...

by Explorer in

REST API Modular Input: How to parse login API response and fetch the security token to supply as input to remaining REST API?

Hi, I am using Rest Modular Input App to fetch data and plug the data to splunk, which is working fine but my issu...

by Path Finder in

JMS Messaging Modular Input: How to configure the app and index messages from my service bus in azure?

Hey, I am trying to use your splunk-app called "JMS Messaging Modular Input" so till now i only entered the JMS Conne...

by Path Finder in

Sideview Utils: Why my view using events module is missing vertical scroll bar, resulting in inability to see whole page?

I have created a view that displays syslog records from three different searches in three different events modules. A...

by Path Finder in

Get Updates on the Splunk Community!

All Apps and Add-ons

Discussions

Help with OSSIM

App for Twitter Data: How to change the api call to add URL arguments?

REST API Issue - Exception performing request

Splunk App for Windows Infrastructure: How to populate panels in the app from Windows data in custom indexes?

splunk add oneshot behavior

How to create a chart line overlay to display median duration by hour on a stacked column graph?

Splunk DB Connect - KeyError 'Elements' on setup

Splunk Add-on for McAfee: How to add McAfee ePO HIPS descriptions to searches?

Sideview Utils: Can the events module be configured to only show the fields selected and not the _raw events?

Splunk for Symantec: Why am I getting messages "The lookup table 'networkservice' does not exist. It is referenced by configuration 'cisco:..."?

How to fix errors in Splunk_TA_ipfix/default/eventgen.conf

Can the Splunk for iSeries - AS400 app be used with Splunk Free?

How do I index .csv files from a C drive?

Does it supports Splunk Cloud?

SA-ldapsearch issue with group members with accents

Will sendresults work in splunk free license ?

Timout 504 with large result sets

Add-on for JIRA: How to add multiple fields to initial JQL_Query?

Hurricane Labs Add-On for QUALYS: Why is no data coming in from API?

REST API Modular Input: How to parse login API response and fetch the security token to supply as input to remaining REST API?

JMS Messaging Modular Input: How to configure the app and index messages from my service bus in azure?

Sideview Utils: Why my view using events module is missing vertical scroll bar, resulting in inability to see whole page?

problem with duplicate event

Why are dashboards not getting populated with data for Splunk App for Unix and Linux?

Loading lookup file...

New in Observability - Improvements to Custom Metrics SLOs, Log Observer Connect & ...

Improve Data Pipelines Using Splunk Data Management

3-2-1 Go! How Fast Can You Debug Microservices with Observability Cloud?

Using Bearer Authentication with addon_builder hel...

Splunk on-call alert triggered by slack usergroup

Add-On Builder App not using Interval frequency

Empty value for alarm_assets and title field in SO...

SSL Issue in testing LOCAL Splunk : [SSL: CERTIFIC...