Network IDS / IPS Custom Processing Applications

Not a Splunk user? Download Splunk, set up your Splunk server, and then install your Applications(s) to extend your server.

Sancp/Sguil Add-on

This bundle indexes sancp logs when sancp is patched with the sguil output patch, extracts the fields, then sends to a processor which converts the decimal IP addresses to dotted format.

Author: araitz Type: Inputs, Custom Processing
Rating: Awaiting 3 votes Added: 8 months ago
Downloads: 28 Last Updated: 8 months ago
License: Creative Commons Price: Free
Categories: