Splunk Dev

Beginner API call with python

yonphang
Explorer

Hi Splunk Community,

 

I have a list of IP that returned from a search, and would like to parse line by line and do a POST api call to third party and display it on the dashboard in realtime.  Im including IP in the POST API and receiving reputation of the IP back.

 

I read the splunk doc but was confused with saved search, sid and etcs.  Can anyone please help me elaborate the steps i need to take to make it happened?  I have knowledge in Python and Bash

 

Example of my API call.

curl -X POST "httpx://api.3rdparty.com/ "Token: 12ab3a1d81124cc323249c7d1c723e39 -i "99.101.22.33"

 

Thank you.  Im new to Splunk development, please be kind 🙂

 

Labels (3)
0 Karma
Get Updates on the Splunk Community!

Technical Workshop Series: Splunk Data Management and SPL2 | Register here!

Hey, Splunk Community! Ready to take your data management skills to the next level? Join us for a 3-part ...

Spotting Financial Fraud in the Haystack: A Guide to Behavioral Analytics with Splunk

In today's digital financial ecosystem, security teams face an unprecedented challenge. The sheer volume of ...

Solve Problems Faster with New, Smarter AI and Integrations in Splunk Observability

Solve Problems Faster with New, Smarter AI and Integrations in Splunk Observability As businesses scale ...