splunk-addon
There are 70 repositories under splunk-addon topic.
Truvis/SplunkDashboards
Collection of Dashboards for Threat Hunting and more!
airbus-cert/Splunk-ETW
A Splunk Technology Add-on to forward filtered ETW events.
databrickslabs/splunk-integration
Databricks Add-on for Splunk
bentleymi/ChatGPT-4-Splunk
Splunk TA for sending completion requests to ChatGPT
swisscom/splunk-addon-powershell
Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
codingWithJimmy/TA-bigfix
Splunk technical add-on (TA) for ingesting BigFix client, relay, and server logs. Includes REST inputs for ingesting assets, relevant fixlets, action summaries, and analysis results.
Truvis/Splunk_TA_Truvis_Suricata5
This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup a Suricata Port Mirrored Server
Kintyre/TA-postfix
Postfix Add-on for Splunk (Compliant with the Mail CIM model)
jerewill-cisco/intersight-splunk-addon
An add-on for splunk to collect data from Cisco Intersight.
hRun/SA-haveibeenpwned
Splunk add-on providing a custom search command to query Troy Hunt's haveibeenpwned API (https://haveibeenpwned.com/api/v3/) for known breaches of your domains or mail addresses.
Splunk-App-and-TA-development/Splunk_TA_common-viz
This technical addon includes a collection of visualization tools for Splunk.
diogofgm/TA-aruba_networks
Aruba Networks Add-on for Splunk
diogofgm/TA-qnap
QNAP Add-on for Splunk
censys/censys-splunk
Censys Splunk Add-on and Apps
cisco-en-programmability/splunk-apps
Splunk Add-On App for Cisco DNA Center
cwru-iso/TA-TheHive-Addon
An add-on that adds an Alert Action for creating alerts in TheHive.
DCSO/TIE-Splunk-TA
DCSO Threat Intelligence Engine (TIE) Add-On for Splunk v8
deductiv/kvstore_tools
KV Store Tools Redux app for Splunk
diogofgm/TA-kaspersky
Kaspersky SC Add-on for Splunk
kmosesdayanand/Splunk
Splunk topics with detailed explanation
artemrys/github_actions_workflow_runs_for_splunk
GitHub Actions workflow runs add-on for Splunk
artemrys/splunk-hec-encoding-issue-repro
Splunk HEC encoding issue repro
aserpi/TA_amazon_s3_uploader
Splunk alert action that uploads search results to an Amazon S3 bucket
Christopher-Costa/Arkime-Splunk
Splunk add-on to perform basic searches against the back end of Arkime using the Elasticsearch REST API.
darizotas/ta-windows-wec
Splunk Add-on to import Windows WEC subscription information
deductiv/fuzzylookup
Fuzzlookup search command for Splunk. Use fuzzy logic to enrich search results using near-matches in your lookups.
diogofgm/TA-ibm_datapower
IBM DataPower Add-on for Splunk
ivfisunov/splunk-react-app
Splunk react application
Splunk-App-and-TA-development/Splunk_ConfVersion_App-and-TA
Splunk App and TA that allows to see the configuration changes on your Splunk server ecosystem.
artemrys/splunk-xml-streaming-minimal-example
Splunk add-on with minimal working example for streaming XML events
cchsing/splunk_codes
Just a place to store the codes done for the Splunk
deductiv/TA-dnslookup
Enrich your Splunk searches with DNS query results for any record type from any DNS server. Uses scripted lookups.
splunk/SA-Rapid7Assets
This supporting add-on comes with prebuilt content for Rapid7 InsightVM data to be easily used with Splunk Enterprise Security's Asset database.