This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata) at scale by balancing the work across multiple CPUs then forwarding to Cribl.
☆12Jan 31, 2024Updated 2 years ago
Alternatives and similar repositories for exporttool
Users that are interested in exporttool are comparing it to the libraries listed below
Sorting:
- TrackMe - Data tracking system for Splunk admins☆47Feb 3, 2023Updated 3 years ago
- Templates for Cribl Stream Collectors☆57Mar 4, 2026Updated 2 weeks ago
- ☆13Feb 6, 2018Updated 8 years ago
- A demontration of disassemblers generated by sleigh2rust☆13Nov 25, 2024Updated last year
- A repository of Sysmon For Linux configuration modules☆16Oct 14, 2021Updated 4 years ago
- A tool to automate the build process of VM images for Google Cloud Platform (GCP).☆37Jul 22, 2025Updated 7 months ago
- Method for storing and unsealing Hashicorp Vault using Ansible and Mac Keychain☆14Nov 29, 2017Updated 8 years ago
- A collection of Splunk dashboard templates.☆15Apr 18, 2019Updated 6 years ago
- A Cribl API wrapper written for Python. Import it into your application to do Cribl things!☆12Mar 20, 2024Updated 2 years ago
- Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)☆24Mar 3, 2023Updated 3 years ago
- Push-button Security Operations Center using Kubernetes☆13Oct 19, 2016Updated 9 years ago
- Essential playbooks & runbooks for cybersecurity operations. A dynamic resource for security pros to navigate digital threats, with best …☆15Apr 14, 2025Updated 11 months ago
- Unified Log Streamer (ULS)☆35Feb 2, 2026Updated last month
- intuitive declarative dotfile management☆15Sep 21, 2025Updated 5 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- Code for the second adventure kit☆46Feb 20, 2024Updated 2 years ago
- ☆10Mar 30, 2015Updated 10 years ago
- OCSF Schema WEB Server☆57Updated this week
- Find permanent WMI event consumers on endpoints that could be used by APT actors.☆17Jun 15, 2016Updated 9 years ago
- ☆15Jan 10, 2019Updated 7 years ago
- INOFFICIAL nfdump with libnfread: library for reading netflow records from nfdump files☆13Jan 28, 2014Updated 12 years ago
- Example Apps to Demonstrate Harness CD & GitOps☆24Sep 25, 2025Updated 5 months ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆19Jul 15, 2021Updated 4 years ago
- Sample data generator for the Splunk for Palo Alto Networks app.☆12Sep 25, 2016Updated 9 years ago
- Collection of various materials on operational security.☆24Nov 15, 2016Updated 9 years ago
- ☆16Jan 15, 2026Updated 2 months ago
- Vault Plugin: Google Cloud Platform CA Service☆17Jul 20, 2021Updated 4 years ago
- A python command line tool to help keep YNAB organized☆23Feb 16, 2026Updated last month
- ☆13Feb 20, 2017Updated 9 years ago
- WebSocket Test Page☆21Jun 15, 2023Updated 2 years ago
- This repository contains different utilities and tools which help with the StackStorm integration pack development.☆10Aug 6, 2023Updated 2 years ago
- Solidity API contract design information for utilizing RPC/RESTful Node Interaction and GraphQL☆23Oct 5, 2021Updated 4 years ago
- Cookiecutter template for StackStorm pack repositories☆11Jun 9, 2022Updated 3 years ago
- ☆15Aug 11, 2019Updated 6 years ago
- TAS Client repository. Source files enabling development of debug tools for Infineon's AURIX and future automotive microcontrollers.☆17Jan 9, 2026Updated 2 months ago
- alfa shell, alfa shell download, alfa shell txt, alfashell, alfa webshell☆15Jul 24, 2022Updated 3 years ago
- Helmfile deployment plugin for HashiCorp Waypoint☆14Oct 20, 2020Updated 5 years ago
- Python control library for the Faultier fault-injection tool.☆14Sep 17, 2025Updated 6 months ago
- CAN bus interface☆13Nov 18, 2024Updated last year