Splunk Add-on Builder
The Splunk Add-on Builder is a Splunk app that helps you build and validate technology add-ons for your Splunk Enterprise deployment. The goals of the Splunk Add-on Builder are to: * Guide you through all of the necessary steps of creating an add-on * Reduce development and testing time * Follow best practices and naming conventions * Maintain CIM compliance * Maintain quality of add-ons * Validate and test the add-on, helping you to identify any limitations such as compatibilities and dependencies * Maintain a consistent look and feel while still making it easy for you to add branding
CIS Critical Security Controls
The CIS Critical Security Controls app for Splunk was designed to provide a consolidated, easily-extensible framework for baseline security “best-practices” based on the Top 20 Critical Security Controls v6.0 published by the Center for Internet Security.
Splunk Common Information Model (CIM)
The Common Information Model is a set of field names and tags which are expected to define the least common denominator of a domain of interest. It is implemented as documentation on the Splunk docs website and JSON data model files in this add-on. Use the CIM add-on when modeling data or building apps to ensure compatibility between apps, or to just take advantage of these data models to pivot and report.