Exporttool / exporttoolLinks
This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata) at scale by balancing the work across multiple CPUs then forwarding to Cribl.
☆11Updated last year
Alternatives and similar repositories for exporttool
Users that are interested in exporttool are comparing it to the libraries listed below
Sorting:
- TrackMe - Data tracking system for Splunk admins☆50Updated 2 years ago
- Splunk Content Control Tool☆116Updated this week
- Visual Studio Code Extension for Splunk☆93Updated last week
- A Dynamic test tool for Splunk Technology Add-ons☆64Updated last week
- App examples for Splunk Enterprise☆147Updated this week
- A framework to integrate with Splunk.☆72Updated last week
- Data validator agains Splunk Common Information Model (CIM)☆76Updated last year
- Ansible Collection for Splunk Enterprise☆13Updated 2 weeks ago
- Splunk Connect for Syslog☆166Updated last week
- Splunk Admins application to assist with troubleshooting Splunk enterprise installations☆96Updated this week
- Ansible framework providing a fast and simple way to spin up complex Splunk environments.☆129Updated 7 months ago
- RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…☆57Updated this week
- Searches and dashboards to assist with optimising concurrency settings☆30Updated 3 years ago
- Azure Functions for getting data in to Splunk☆32Updated 6 months ago
- Phantom Apps Repo☆83Updated 3 years ago
- Grand Central logging for Cloud Services to Splunk☆36Updated 3 years ago
- Splunk@Splunk's Ansible role for installing Splunk, upgrading Splunk, and installing apps/addons on Splunk deployments (VM/bare metal)☆166Updated last week
- Collection of useful python scripts to interact with Splunk's API.☆15Updated 3 years ago
- scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content☆30Updated last year
- Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API☆26Updated 2 weeks ago
- Docker Splunk "Orchestration" bash script (6,000+ lines) to create fully automated pre-configured splunk site-2-site clusters or stand al…☆140Updated 5 years ago
- ☆71Updated last year
- Home for Splunk security datasets.☆125Updated 5 years ago
- Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)☆41Updated 2 months ago
- A repository for generalized splunk code, dashboards, resources and suggestions/recommendations.☆32Updated 2 years ago
- ☆97Updated 2 years ago
- sample app along with a CICD pipeline for testing multiple versions of splunk☆47Updated 4 years ago
- scripts to configure the Splunk Universal Forwarder in a locked down state☆40Updated 6 years ago
- Splunk code (SPL) for serious threat hunters and detection engineers.☆287Updated last year
- Ansible playbooks for configuring and managing Splunk Enterprise and Universal Forwarder deployments☆373Updated this week