Security Applications Inputs Applications

Want to define new inputs for your Splunk server?

Input Applications let you download pre-made definitions for bringing even more data into your Splunk server. Or, you can share your own! Along with those definitions, since Applications allow you to include more than one type of content, you can roll together a complete solution for a particular situation or program.

Not a Splunk user? Download Splunk, set up your Splunk server, and then install your Applications(s) to extend your server.

Sancp/Sguil Add-on

This bundle indexes sancp logs when sancp is patched with the sguil output patch, extracts the fields, then sends to a processor which converts the decimal IP addresses to dotted format.

Author: araitz Type: Inputs, Custom Processing
Rating: Awaiting 3 votes Added: 12 months ago
Downloads: 31 Last Updated: 12 months ago
License: Creative Commons Price: Free
Categories:

Netcache fields, inputs, and event types

This add-on normalizes Netcache fields so that other Splunk applications understand them.

Author: Splunk Type: Inputs, Fields, Event Types
Rating: Awaiting 3 votes Added: 11 months ago
Downloads: 32 Last Updated: 11 months ago
License: Creative Commons Price: Free
Categories:
Screenshot

Splunk for Snort

This application applies to Snort alert logs, bringing their field names into compliance with the Splunk interface standard (see http://www.splunkbase.com/howtos/Splunk/howto:Understanding_Splunk's_interface_standards).

Author: Splunk Type: Inputs, Fields, Event Types
Rating: Awaiting 3 votes Added: 11 months ago
Downloads: 589 Last Updated: 3 months ago
License: Creative Commons Price: Free
Categories:

Splunk for Snare

The Splunk for Snare application offers eventtypes and field extractions for Snare collecting Windows events.

Author: Splunk Type: Inputs, Fields, Event Types
Rating: Awaiting 3 votes Added: 11 months ago
Downloads: 1,040 Last Updated: 2 months ago
License: Creative Commons Price: Free
Categories: