1. I have analert scheduled to run every hour to get updated list of IPs of public nodes. 2. I need to run the scriptagainst each result IP and if output=success, I need to send email to s...
This is the first time I am using anadvanced conditional alert in savedsearches.conf.
I'd like to get some feedback about current configurations I have around monitoring scheduled jobs.
If a...
i've tried so much but don't reached something, so i hope someone can help me here. I want to add aalertaction python skript to a correlation search. In this python script i use the pycurl m...
Hi all,
I am using Splunk Enterprise 8.1.
Recently, we had configured alertactions as "Email notification action" and it works fine. Moreover, we would like to send those alert message to S...
Hi,
We have recently switched from Phantom to SOAR and I'm trying to send our triggered alerts to SOAR.
The TA we are using is Splunk for SOAR Export
I have tested that from S...
Hi,
I have a scenario to configurealertactions with following requirements.
1- Forwarders will send logs to Splunk indexers.
2 - Alertactions will be configured to execute scripts on a s...
Hi,
I have some problem with run python script in custom alert. I have the next file
alert_actions.conf
[DigitalTwingKeepwareCRC]
is_custom = 1
label = "Monitoreo de molino de Rio C...
Hello Ninjas!
I need help with setting analert which triggers a php script with results. This script should pass the results to 3rd party system.
For example: script.php "date | field1 | field 2...
...ith the permissions i want, but is dont working. I have read all the doc of configurating scripted alerts, but i cant resolve this problem.
Can anyone helpme?