http://www.splunkbase.com/feed/apps.rss/Inputs Latest SplunkBase Applications filtered by Inputs Splunk Mon, 01 Dec 2008 18:36:09 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Change+Management 95d9940cef25692b9483d352c8ed494c Splunk for Change Management provides predefined reports and dashboards to facilitate change auditing, change detection, change reporting, change validation and incident response based on change events, change tickets and configuration files. Splunk Mon, 01 Dec 2008 17:58:40 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Windows+Management 47060fc48e4f93e3795890aafc5c8267 Splunk for Windows application is a compilation of saved searches, eventtypes, inputs, and field extractions for Windows. The extractions are compatible with the Splunk Common Information Model. The application also contains an integration for Microsoft’s System Center Operations Manager. Splunk Tue, 04 Nov 2008 19:06:16 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Network+Security 8a48676a95f0f7c3a5c567aa9f159b0e The Splunk Network Security application offers a set of reports, saved searches, and dashboards, as well as corresponding alerts that you can use to monitor your firewalls, intrusion detection and prevention systems, as well as operating systems. Splunk Tue, 04 Nov 2008 19:04:51 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+UNIX 94bc942e8cd8c90bf64d566700735e5d The Splunk for UNIX application is a compilation of a dashboard, saved searches, eventtypes, and field extractions that work for various flavors of UNIX. In addition, the application also ships with a set of scripted inputs that can be used to monitor UNIX machines. Inputs like top, ps, vmstat, and netstat are supported. rcarney Thu, 23 Oct 2008 23:50:16 +0000 http://www.splunkbase.com/apps/Inputs/app:Script+for+database+inputs 4c689287f2e986f028679173d14ac8fb This script is designed to be used as a scripted input for data contained in database tables. Plese refer to the Splunk Admin guide for more information on configuring scripted inputs. The script has been successfully used in a number of deployments, and should work with Oracle, MySQL, and sybase databases as-is. Other database types can be added by installing the appropriate perl DBD module, and editing the script to configure for the new dbtype. In this version, all of the SQL code has been abstracted from the script, and all parameters including the query are passed as commandline arguments to the script. Splunk Thu, 23 Oct 2008 20:26:19 +0000 http://www.splunkbase.com/apps/Inputs/app:Application%3A+CheckPoint+OPSEC+LEA+Application+for+Linux 66674c569720aeb3fd53f1185a4925b3 This application contains an OPSEC LEA application to drop into Splunk 3.3 or later, offering a client, event types, and field extractions. This version is compiled for Solaris. The application conforms with the Splunk common information model, meaning that it uses common field names for its data. Splunk Thu, 23 Oct 2008 20:24:02 +0000 http://www.splunkbase.com/apps/Inputs/app:CheckPoint+OPSEC+LEA+Application+for+Solaris%7FSPARC c4811343a34356649107c734c7dde59a This application contains an OPSEC LEA application to drop into Splunk 3.3 or later, offering a client, event types, and field extractions. This version is compiled for Solaris. The application conforms with the Splunk common information model, meaning that it uses common field names for its data. erik Fri, 17 Oct 2008 19:07:33 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+IMAP faf88f0ebec2f68db41a4f2aea2a7181 This application will continually download mail from an imap account where it is indexed by a splunk server. You can do cool things like see how often you get mail from someone, graph by size, time, etc. Splunk Thu, 16 Oct 2008 19:10:09 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Citrix+XenServer+Management 931cc18d8db03fec361e7e2dfd2c99bd This Splunk application manages Citrix XenServers. It includes inputs, indexing, searches, reports, dashboards and field actions. Splunk Wed, 01 Oct 2008 22:28:16 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Snare d1622685eb55d92d97a3d0883d347583 The Splunk for Snare application offers eventtypes and field extractions for Snare collecting Windows events. rataide Tue, 16 Sep 2008 19:43:30 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+tcpdump 3e648d0b4dd134ececd859d7c4ca11b3 This application will allow you to collect data from a tcpdump standard output directly into Splunk, it will also perform the necessary field extractions based on the Common Information Model This application is compliant with the 3.3.x standard. Splunk Fri, 05 Sep 2008 23:29:25 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Network 5a25fb41ca4703988250b99417eca178 This is a simple application to monitor change on network device configurations. It runs a scripted input to request the network device upload it's configuration file to a tftp server. The input reads /tftpboot for any files that get uploaded and indexes them through the fschange source. Splunk Fri, 05 Sep 2008 23:27:48 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Jira f590d7531f1ec3f3b8286ec84d1ee2e0 This application reads in issues for a Jira server. It uses a scripted input that accesses the Jira remote SOAP interface. Splunk Wed, 20 Aug 2008 18:31:47 +0000 http://www.splunkbase.com/apps/Inputs/app:Splunk+for+Snort c4de85d8c07f02e7aae87c5d2cf2f925 This application applies to Snort alert logs, bringing their field names into compliance with the Splunk interface standard (see http://www.splunkbase.com/howtos/Splunk/howto:Understanding_Splunk's_interface_standards). erik Fri, 15 Aug 2008 03:17:24 +0000 http://www.splunkbase.com/apps/Inputs/app:Web+Page+Monitor 9f5cf71efea79575dcb8050cb6518d02 This bundle will check a set of webpages every interval and index the result, time, size and optionally content and or crc of page(s). Its cool to do searches to see when your pages change, take long to load, or many other cool things. Splunk Mon, 14 Jan 2008 18:33:07 +0000 http://www.splunkbase.com/apps/Inputs/app:Sendmail+fields%2C+inputs%2C+and+event+types e6e1c2112286c360aa09c203dcdad2ab This add-on applies to Sendmail logs, bringing their field names into compliance with the Splunk interface standard (see http://www.splunkbase.com/howtos/Splunk/howto:Understanding_Splunk's_interface_standards). Splunk Mon, 14 Jan 2008 18:30:11 +0000 http://www.splunkbase.com/apps/Inputs/app:Netcache+fields%2C+inputs%2C+and+event+types 3dda8837097357ffcdb02b8489237812 This add-on normalizes Netcache fields so that other Splunk applications understand them. Splunk Mon, 14 Jan 2008 18:22:47 +0000 http://www.splunkbase.com/apps/Inputs/app:iptables+fields%2C+inputs%2C+and+event+types 8e50a9451bd5816f9724fa6f991c34f5 This add-on applies to iptables firewall logs, normalizing their field names so they work well with other Splunk applications. Splunk Mon, 14 Jan 2008 18:22:06 +0000 http://www.splunkbase.com/apps/Inputs/app:Exchange+fields+and+inputs c3c01540d9e1f1909b49230ea3661d5c This add-on applies to Microsoft Exchange event tracking logs, bringing their field names into compliance with the Splunk interface standard (see http://www.splunkbase.com/howtos/Splunk/howto:Understanding_Splunk's_interface_standards). araitz Tue, 18 Dec 2007 19:25:57 +0000 http://www.splunkbase.com/apps/Inputs/app:Sancp%7FSguil+Add-on 86554233c6f753ca862119b8d13bdb0e This bundle indexes sancp logs when sancp is patched with the sguil output patch, extracts the fields, then sends to a processor which converts the decimal IP addresses to dotted format. kordless Mon, 08 Oct 2007 01:19:21 +0000 http://www.splunkbase.com/apps/Inputs/app:OSX+Battery+Monitor d1dfec17085c80fbfb05090fd54a1548 Bundle for monitoring battery usage on an OSX based laptop. maverick Fri, 07 Sep 2007 04:18:53 +0000 http://www.splunkbase.com/apps/Inputs/app:Negative+Searching+Demo+Bundle 5c0f7184d8c648bae1e1991d91f83aef This bundle, created jointly by Maverick and Stephen Sorkin, demonstrates a way to perform negative searches by indexing known patterns and catching anomalous patterns into a separate index. deeann Tue, 28 Aug 2007 20:53:27 +0000 http://www.splunkbase.com/apps/Inputs/app:WildPackets+packet+number+removal 19450a04d7235542f44922b732d91bfe Removes packet numbers from WildPackets events. markc Mon, 13 Aug 2007 19:12:01 +0000 http://www.splunkbase.com/apps/Inputs/app:IPMI+Fan+Speeds fed0063684271a2dca82462b9ab99013 Gather and report on system fan speeds using ipmi markc Mon, 20 Aug 2007 07:52:30 +0000 http://www.splunkbase.com/apps/Inputs/app:SMART+Disk+Reporting 549655d3741955605eedff890642a6b7 This bundle outputs this text : === START OF INFORMATION SECTION === Model Family= Seagate Momentus 7200.1 series Device Model= ST910021AS Serial Number= 3MH0498W Firmware Version= 3.07 User Capacity= 100,030,242,816 bytes Device is= In smartctl database [for details use: -P show] ATA Version is= 7 ATA Standard is= Exact ATA specification draft version not indicated Local Time is= Mon Aug 20 00:38:18 2007 PDT SMART support is= Available - device has SMART capability. SMART support is= Enabled === START OF READ SMART DATA SECTION === SMART overall-health self-assessment test result= PASSED Which is then indexed by Splunk. deeann Mon, 20 Aug 2007 07:21:12 +0000 http://www.splunkbase.com/apps/Inputs/app:Dee%27s+wtmp+input+bundle 498a8bf1585ebe9f33f57ade0832e23f Help Splunk to index the output of last (from /var/log/wtmp), even though it's in a binary format. carasso Sun, 19 Aug 2007 23:56:13 +0000 http://www.splunkbase.com/apps/Inputs/app:javac%2B%2B+bundle b1b492cdcead1a4442a57e91e19f6d59 adds reasonably good support for C++ and Java source code by breaking functions, classes, and structs into different events.