Solved: Is it possible to make log using python script on ...

bkhwang · ‎12-29-2022

Hello!!

If a new event log is generated in the index, is it possible the Python script reads the event log and generates a new log?

I want to analyze event log by python script and draw a graph on dashboard by analyzed new log.

ITWhisperer · ‎12-29-2022

You could create a summary index based on a report of the events in the first index and then create a chart based on the values in the summary index. If your summary index needs particular processing that is not possible with standard SPL, you could write your own custom command (in python) and feed the events from the first index to that before writing the results to the summary index.

View solution in original post

bkhwang · ‎12-29-2022

Thank you for your feedback @ITWhisperer

Can you link me if there is a document related to it?

ITWhisperer · ‎12-30-2022

Create a custom search command | Documentation | Splunk Developer Program

ITWhisperer · ‎12-29-2022

You could create a summary index based on a report of the events in the first index and then create a chart based on the values in the summary index. If your summary index needs particular processing that is not possible with standard SPL, you could write your own custom command (in python) and feed the events from the first index to that before writing the results to the summary index.

Is it possible to make log using python script on splunk server?

app

Python

Holistic Visibility and Effective Alerting Across IT and OT Assets

SOC Modernization: How Automation and Splunk SOAR are Shaping the Next-Gen Security ...

Ask It, Fix It: Faster Investigations with AI Assistant in Observability Cloud