In a part of splunk soar (phantom) playbook I would like, in some cases, to send a syslog msg to a remote syslog server. I did not find any well-known app which can help me, so I figure out c...
Would it be easier to use a customphantom playbook to Add a user to a specific AD group from an event trigger, instead of creating a custom App in splunk using the App builder?
I have multiple scripts that perform functions outside of Splunk to build XML on the fly. To run them its easiest to have Splunk actively schedule and execute these, what I wondered is what I s...
hi
I need some thing like the following one as the final output
I have tried some thing like this...but not the one i expected...
....query | chart values(percent) ...
I have extracted certain feilds using java sdk from splunk with the table command.
The data extracted is in the form of job. How can i convert that data into string, so that i can apply c...
Splunk's command types page is missing a few functions, including accum. I would like to know if accum is a centralized streaming command, distributable streaming command, or none of the above. E...
We are using custom docker containers deployed as azure functions. The underlying code is all in python. I'd like to use the splunk logging driver within my container. I am unsure h...
Hi All,
I want to understand if there is a way to perform an action to the server through Splunk.
For e.g.
to run ls -lrt command for a path
to kill/terminate a process
to run a script o...
Team,
I am looking for a way to generate a summary report on cases that we have in Phantom ? Which will include case ID, case name, Assignee, Start data, end date , status etc.
I dont find an o...