http://www.splunkbase.com/feed/apps.rss/Inputs/Security Latest SplunkBase Applications filtered by Inputs in category Security Splunk Tue, 04 Nov 2008 19:06:16 +0000 http://www.splunkbase.com/apps/Inputs/Security/app:Splunk+for+Network+Security 8a48676a95f0f7c3a5c567aa9f159b0e The Splunk Network Security application offers a set of reports, saved searches, and dashboards, as well as corresponding alerts that you can use to monitor your firewalls, intrusion detection and prevention systems, as well as operating systems. rcarney Thu, 23 Oct 2008 23:50:16 +0000 http://www.splunkbase.com/apps/Inputs/Security/app:Script+for+database+inputs 4c689287f2e986f028679173d14ac8fb This script is designed to be used as a scripted input for data contained in database tables. Plese refer to the Splunk Admin guide for more information on configuring scripted inputs. The script has been successfully used in a number of deployments, and should work with Oracle, MySQL, and sybase databases as-is. Other database types can be added by installing the appropriate perl DBD module, and editing the script to configure for the new dbtype. In this version, all of the SQL code has been abstracted from the script, and all parameters including the query are passed as commandline arguments to the script. rataide Tue, 16 Sep 2008 19:43:30 +0000 http://www.splunkbase.com/apps/Inputs/Security/app:Splunk+for+tcpdump 3e648d0b4dd134ececd859d7c4ca11b3 This application will allow you to collect data from a tcpdump standard output directly into Splunk, it will also perform the necessary field extractions based on the Common Information Model This application is compliant with the 3.3.x standard. araitz Tue, 18 Dec 2007 19:25:57 +0000 http://www.splunkbase.com/apps/Inputs/Security/app:Sancp%7FSguil+Add-on 86554233c6f753ca862119b8d13bdb0e This bundle indexes sancp logs when sancp is patched with the sguil output patch, extracts the fields, then sends to a processor which converts the decimal IP addresses to dotted format.