Splunk Add-on Builder
The Splunk Add-on Builder is a Splunk app that helps you build and validate technology add-ons for your Splunk Enterprise deployment. The goals of the Splunk Add-on Builder are to: * Guide you through all of the necessary steps of creating an add-on * Reduce development and testing time * Follow best practices and naming conventions * Maintain CIM compliance * Maintain quality of add-ons * Validate and test the add-on, helping you to identify any limitations such as compatibilities and dependencies * Maintain a consistent look and feel while still making it easy for you to add branding
RST Cloud Threat Database Add-on for Splunk
RST Cloud Threat Database Add-on allows to aggregate threat intelligence from multiple sources, store it locally in the Redis Database and quickly check a bunch of IP addresses against it. It makes possible to determine malicious IP addresses in the logs and use this information to analyse such activities. Features: - Automatically download IP reputation data and save in the Redis Database; - Predefined macros helps to enrich your log containing IP addresses; - A near real-time performance with an ability to process thousands of IPs at one time.
Splunk Add-on for Microsoft Windows
The Splunk for Microsoft Windows add-on includes predefined inputs to collect data from Windows systems and maps to normalize the data to the Common Information Model.