http://www.splunkbase.com/feed/apps.rss/All/Technologies/Security_Applications/Network_IDS_-_IPS Latest SplunkBase Applications in category Network IDS / IPS Splunk Wed, 20 Aug 2008 18:31:47 +0000 http://www.splunkbase.com/apps/All/Technologies/Security_Applications/Network_IDS_-_IPS/app:Splunk+for+Snort c4de85d8c07f02e7aae87c5d2cf2f925 This application applies to Snort alert logs, bringing their field names into compliance with the Splunk interface standard (see http://www.splunkbase.com/howtos/Splunk/howto:Understanding_Splunk's_interface_standards). araitz Tue, 18 Dec 2007 19:25:57 +0000 http://www.splunkbase.com/apps/All/Technologies/Security_Applications/Network_IDS_-_IPS/app:Sancp%7FSguil+Add-on 86554233c6f753ca862119b8d13bdb0e This bundle indexes sancp logs when sancp is patched with the sguil output patch, extracts the fields, then sends to a processor which converts the decimal IP addresses to dotted format. mfratto Mon, 01 Oct 2007 14:36:44 +0000 http://www.splunkbase.com/apps/All/Technologies/Security_Applications/Network_IDS_-_IPS/app:Snort+fields 786e4729ca04060a32e4dee2ba912b4d Extracts snort 2.6 fields which can be used in reporting.