I'm trying to get a list of all files with the path that Splunk is currently monitoring. Google and searches here have proven unfruitful.
There's a rest endpoint that lists all the files that splunk is monitoring:
For more details as to how exactly use the endpoint is described in the blog post:
If you are post 6.3 you could also use the command:
$SPLUNK_HOME/bin/splunk list inputstatus
I'd start with
| metadata type=sources
Then, I'd look to
Then look at Local (also check Remote, just below! )
So that you can see, for example, a monitor input that has 32 files being monitored:
still doesn't give me anything remotely close to what i'm looking for, getting anything out of splunk other that the data it's ingesting is like pulling teeth from an angry bear with 3 of his friends with him.