Splunk Dev

Beginner API call with python

yonphang
Explorer

Hi Splunk Community,

 

I have a list of IP that returned from a search, and would like to parse line by line and do a POST api call to third party and display it on the dashboard in realtime.  Im including IP in the POST API and receiving reputation of the IP back.

 

I read the splunk doc but was confused with saved search, sid and etcs.  Can anyone please help me elaborate the steps i need to take to make it happened?  I have knowledge in Python and Bash

 

Example of my API call.

curl -X POST "httpx://api.3rdparty.com/ "Token: 12ab3a1d81124cc323249c7d1c723e39 -i "99.101.22.33"

 

Thank you.  Im new to Splunk development, please be kind 🙂

 

Labels (2)
0 Karma
Get Updates on the Splunk Community!

A Prelude to .conf25: Your Guide to Splunk University

Heading to Boston this September for .conf25? Get a jumpstart by arriving a few days early for Splunk ...

4 Ways the Splunk Community Helps You Prepare for .conf25

.conf25 is right around the corner, and whether you’re a first-time attendee or a seasoned Splunker, the ...

Enhance Your Splunk App Development: New Tools & Support

UCC FrameworkAdd-on Builder has been around for quite some time. It helps build Splunk apps faster, but it ...