Scripted Inputs Apps

Want to use APIs or shell commands to get data into Splunk?

Scripted Input apps can be used to feed data into Splunk that is available through APIs or shell commands. Create your own, or download scripts created by other members of the Splunk community!

Screenshot

Splunk for IMAP

This application will continually download mail from an imap account where it is indexed by a Splunk server...

Type: App | Splunk Version: 4.x, 3.x | Author: erik | Downloads: 2899
email search
Screenshot

Splunk for Cisco Security

**************************************************************************************************************************** This app, Splunk for Cisco Security, has been replaced with a new app of a different name in a new location on Splunkbase...

Type: App | Splunk Version: 4.x | Author: will | Downloads: 7191
Screenshot

Splunk App for Windows

The Splunk App for Windows provides examples of pre-built data inputs, searches, reports, alerts, and dashboards for Windows server and desktop management...

Type: App | Splunk Version: 4.x | Author: Splunk | Downloads: 44721
windows windows-event-logs perfmon splunk-supported

Splunk for UNIX (Splunk 3 Compatible)

The Splunk for UNIX application is a compilation of a dashboard, saved searches, eventtypes, and field extractions that work for various flavors of UNIX...

Type: Monitoring | Splunk Version: 3.x | Author: Splunk | Downloads: 16503
Screenshot

Splunk for Unix and Linux

Splunk for *nix provides pre-built data inputs, searches, reports, alerts and dashboards for Linux and Unix management...

Type: App | Splunk Version: 4.3, 4.2 | Author: Splunk | Downloads: 34988
unix linux performance splunk-supported
Screenshot

Splunk for OSSEC - Splunk v4 version

This package contains parsing logic, saved searches, and dashboards for monitoring the OSSEC Host-based Intrusion Detection System via Splunk...

Type: Add-On | Splunk Version: 4.3, 4.2, 4.1 | Author: southeringtonp | Downloads: 4479
ossec
Screenshot

Cisco IPS SDEE Data Collector

**************************************************************************************************************************** This add-on, Cisco IPS SDEE Data Collector, has been replaced with a new add-on of a different name in a new location on Splunkbase...

Type: Add-On | Splunk Version: 4.x | Author: will | Downloads: 1542

Web Page Monitor

This bundle will check a set of webpages every interval and index the result, time, size and optionally content and or crc of page(s)...

Type: Add-On | Splunk Version: 4.x | Author: erik | Downloads: 10271
http httpclient

Script for database inputs

This script is designed to be used as a scripted input for data contained in database tables...

Type: Operations | Splunk Version: 3.x | Author: rcarney | Downloads: 1771

Dee's wtmp input bundle

Help Splunk to index the output of last (from /var/log/wtmp), even though it's in a binary format.

Type: Linux | Splunk Version: 3.x | Author: deeann | Downloads: 233

Nmap Scripted Input & Field Extraction

Want to put your Nmap output into Splunk? Check out this add-on, which will parse your grepable Nmap output into a scripted input and then perform some field extraction on the data.

Type: Security Applications | Splunk Version: 3.x | Author: araitz | Downloads: 345

Perl POP3 Scripted Input

This is a simple perl script that reads messages from a POP3 account...

Type: Add-On | Splunk Version: 3.x | Author: robinBonin | Downloads: 67

Splunk for Citrix XenServer Management

This Splunk application manages Citrix XenServers...

Type: Citrix virtualization | Splunk Version: 3.x | Author: Splunk | Downloads: 821

Splunk for tcpdump

This application will allow you to collect data from a tcpdump standard output directly into Splunk, it will also perform the necessary field extractions based on the Common Information Model This application is compliant with the 3.3.x standard.

Type: Network Security | Splunk Version: 3.x | Author: rataide | Downloads: 893

Weather Web Service Input

This distribution calls a weather web service hosted by www.webservicex.com with a list of cities as input which is output to Splunk's indexer...

Type: Suite | Splunk Version: 3.x | Author: ndoshi | Downloads: 7
Screenshot

Web Services Weather as Scripted Input

This distribution calls a weather web service periodically with a list of cities as input which is output to Splunk's indexer...

Type: App | Splunk Version: 4.x, 3.x | Author: ndoshi | Downloads: 694
weather scripted-inputs web-services
Screenshot

Web Services Stock Quote as Scripted Input

This distribution calls a stock quote web service with a list of stock symbols as input which is output to Splunk's indexer...

Type: App | Splunk Version: 4.x, 3.x | Author: ndoshi | Downloads: 452

BSM Audit log loader

This app will on an interval convert local audit logs to text while keeping track of the last time it ran as to not get duplicates...

Type: OS Audit and Change Control | Splunk Version: 3.x | Author: erik | Downloads: 91

App Deployment

This application provides a way to distribute applications via the Deployment Server...

Type: Splunk | Splunk Version: 3.x | Author: welbymcroberts | Downloads: 48

IRC Splunk Bot

This application provides bi-directional integration between Splunk and an IRC Server...

Type: Networking | Splunk Version: 3.x | Author: rataide | Downloads: 86

Nagios 3.0.6

integration fo a nagios3.0.6 xxxxxxxxxxxxxxxxxxx

Type: Suite | Splunk Version: 3.x | Author: ymiranda | Downloads: 51

Splunk for MySQL

A collection of Splunk scripted inputs, eventtypes, and reports for MySQL monitoring and diagnostics.

Type: Add-On | Splunk Version: 3.x | Author: BobFox | Downloads: 471

Splunk for Solaris Zones

The Splunk for Solaris Zones application is similar to the system monitoring capabilities in the Splunk for UNIX app...

Type: Add-On | Splunk Version: 3.x | Author: ogdin | Downloads: 84

Splunk App for Enterprise Security

Splunk App for Enterprise Security is a security practitioner's 'lens' for security data collected in Splunk...

Type: App | Splunk Version: 4.3, 4.2 | Author: Splunk | Downloads: N/A
security splunk-supported ess enterprise-security
Screenshot

Splunk PCI Compliance Suite

Splunk PCI Compliance Suite is a an app that provides a detailed set of reports and dashboards across all twelve PCI DSS requirements and all 228 sub-requirements including live controls monitoring, process workflow, checklists, and reporting.

Type: Suite | Splunk Version: 4.x | Author: Splunk | Downloads: N/A
pci splunk-supported compliance

What are Apps and Add-ons?

Apps give you insight into your IT systems with dashboards, reports, data inputs and saved searches that work in your environment from the moment they install. Save time and money with free plug-and-play solutions built by Splunk, our partners and users.

Add-ons let you tackle specific data problems directly. Built by Splunk partners and power users from the Splunk community, add-ons are smaller, reusable components that can change the look and feel of Splunk, add data sources or share information between users.

How Do I Get Them?

You can browse and install apps from the menu at left or through the App Launcher within your Splunk installation. Visit the Administration Manual to learn more about installing apps or add-ons.

Most Splunk apps and add-ons are completely free and work with both the Free and Enterprise versions of Splunk 4.x. If you're looking for apps for older versions of Splunk, visit the Splunkbase Archive.

Build Your Own

The Splunk developer framework makes it easy to turn your Splunk work into custom apps and add-ons. Read the Developer Manual to find out how.

Come back to Splunkbase when you're ready to show your app to the world and visit the Share page to upload your app to the Splunk community.