Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Event Generator

mha_it_network
New Member
‎10-07-2012 12:34 AM

Hi,

Is there a free event/log generator for Windows avalable that i can use to emulate firewalls, database e.t.c.

I am trying to get in sample data into splunk

I would very much appreciate some assistance

Tags (1)
0 Karma
Reply

Wilcooley
Path Finder
‎01-31-2013 11:39 AM

There is eventgen, which was extracted from one of the official Splunk apps. I'm not sure why it isn't included in SplunkBase.

Reply

rwigand
New Member
‎12-17-2012 09:14 AM

just saw your post. Maybe the built-in command "eventcreate" under Windows is what you are looking for? It ships with newer Windows versions and generates eventlog entries from commandline. So if you build a loop around it it may be able to fill your eventlog with errors. here is an example:

eventcreate /T ERROR /ID 4711 /L APPLICATION /D "This is a demo error!"

or:

eventcreate /T WARNING /ID 4712 /L SYSTEM /D "just a warning in the system log"

0 Karma
Reply

crt89
Communicator
‎06-24-2013 08:50 PM

Thanks for the information @rwigand. I was also looking for this and made a script out of your comment.

0 Karma
Reply

kallu
Communicator
‎10-07-2012 04:52 AM

If you just want to setup a Splunk demo, maybe sampledata.zip from Splunk tutorial could do? It's not Windows nor firewall or db logs, but on a plus side you get ready-made use-cases for you demo from tutorial with minimal effort. Link to sampledata.zip is at http://docs.splunk.com/Documentation/Splunk/latest/Tutorial/GetthesampledataintoSplunk

If you really want to generate logs (ie simulate) for network devices then you should take a look at http://www.gns3.net/

Reply
Get Updates on the Splunk Community!

What the End of Support for Splunk Add-on Builder Means for You

Hello Splunk Community! We want to share an important update regarding the future of the Splunk Add-on Builder ...

Solve, Learn, Repeat: New Puzzle Channel Now Live

Welcome to the Splunk Puzzle PlaygroundIf you are anything like me, you love to solve problems, and what ...

Building Reliable Asset and Identity Frameworks in Splunk ES

 Accurate asset and identity resolution is the backbone of security operations. Without it, alerts are ...