The Archive supports a collection of apps for Splunk prior to version 4.0. Browse the menu at left to find apps or add-ons by the category of solution they provide or the Splunk function they're built for. To learn more about installing apps in Splunk 3.x, check the Adminstration Manual for your version.
Splunk Globe uses the Poly9 FreeEarth plugin. Splunk Globe queries a Splunk instance for the most recent IP addresses, then plots them on the globe. Updates occur in near real-time.
This search script will add additional information from a CSV file to your events. Changelog: v1.2 - Now includes basic error checking and additional fixes for malformed CSV files
Provide IP-to-location look up support via a free GeoIP API. Please see README for non-trivial installation instructions. Latest changes (See CHANGELOG for full details): * Enhancement: Added a switch ["-nodns"|"nodns"] to disable name resolution. Usage: ....| geoip -nodns dest_ip * Enhancement: Now only real RFC/1918 IPs will have the city populated with "RFC/1918" other IPs with no resolution revert to "Unknown"