Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Fake Input for Lab

daniel333
Builder
‎05-07-2012 05:36 PM

Hey guys,

Thought I asked this recently but I can't find the post. I am building out a lab and I was wondering if anyone had any script that could generate fake data? Inflow of apache or IIS data. Something like that.

thanks!
-Daniel

Tags (2)
0 Karma
Reply

MHibbin
Influencer
‎05-08-2012 12:10 AM

daniel333,

When I create demonstrational apps, I often find that I cannot find a data generator for my requirements. I don't actually have much experience with Apache of IIS logs, but if this was me, I would take a bunch of common log events (probably find lists of these online), and then decide which sections of the logs need to change with each log event (e.g. date/time, ip addresses, etc.). I would then write a simple bash script that uses "while true; do" loops and place random (depending on the content you could use something like bash's random function, or I like to simply use the "shuf" variable) content into STDOUT/log file and feed this into Splunk. This could then be built on if you need more organised logs.

There are probably much tidier methods for achieving this in a python script of something, but it's whatever works for you.

Also, with regards to your "lost" question, you can find past-posts/questions in your profile section (click your name at the top of the page).

Regards,

MHibbin

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

How to find the worst searches in your Splunk environment and how to fix them

Everyone knows Splunk is a powerful platform for running searches and doing data analytics. Your ...

Share Your Feedback: On Admin Config Service (ACS)!

Help Us Build a Better Admin Config Service Experience (ACS)   We Want Your Feedback on Admin Config Service ...