The Splunk Event Generator is a utility which allows its user to easily build real-time event generators.
The current maintainers of this project are Brian Bingham (bbingham@splunk.com), Tony Lee (tonyl@splunk.com), and Jack Meixensperger (jackm@splunk.com).
The goals of this project:
Documentation is hosted at Eventgen Documentation.
For more information, please go to Eventgen Github Repository.
- bugfix for perDayVolume
- update dependency package versions
- app is now cloud-vetted
- app can be installed without restart
- added support for “interval” option in replay mode
- added new “splitSample” option
- added new "counter" generator
- added metrics logging
- bugfix for logging verbosity
- bugfix for replay mode threading and backfill generation
- bugfix for csv file handling
- bugfix for timeMultiple handling
NOTE: this version does not support Splunk >= 8.0 on Windows 10
Maintenance release with ujson version fix and updated userName samples
- fixed broken "fileRotator" config option
- update to default "source" behavior: unless specified, the default source is set to the sample name
NOTE: this version does not support Splunk >= 8.0 on Windows 10
- fixed oom error caused by ujson
- added scp output plugin - use outputMode = scsout
- added --multithread support for server/controller architecture
- fix CI failures due to jinja in log config
NOTE: this version does not support Splunk >= 8.0 on Windows 10
- Python3 support on 8.0
- Migrate to Python3 and 7.0.0 only supports Python3
- Fix random token replacement bug
- Enhance tutorial documentation
- Add syslogAddHeader option
- Fix timezone setting bug
- Fix out of memory issue when using multiprocess mode
- Remove some stale third party libraries
Note:
Please set "python.version = python3" in "server.conf" in $SPLUNK_HOME/etc/system/local in [general] stanza.
- Fix zipfile bug
- Fix random token replacement bug
- Fix security vulnerability issue
- Fix custom plugin stale docs
- Fix timezone setting bug
- Fix multiprocess OOM issue
- Add syslogAddHeader config
- Added metrics output mode
- Fixed regex token replacement issue
- Added test coverage information
- Increased functional test coverage
- Eventgen server complete revamp and standalone mode support
- Added contributor license
- Updated Dockerfile
- Added documentation
- Fixed bugs / stability / optimized speed
- Fix exception log error
- Fix CircleCI status badage error
- Fix navigation error for app if installed with Splunk Stream
- Fix generatorWorkers not working error
- Fix interval error when end = 1
- Fix fileName in global stanza error
- Add 3rd party libs in SA-Eventgen App
- Add httpeventAllowFailureCount for httpevent
- Add 3rd party libs in license credit
- Disable logging queue in multiprocess mode
- Change implementation of extendIndex for better performance
- Add functional tests for jinja template and modular input feature
- Fix default jinja template directory is not correctly resolved when sampleDir is set issue
- Fix verbose flag not working in splunk_eventgen command line issue
- Fix index, source, sourcetype are not correct when using splunkstream mode issue
- Fix ssh to container issue
- Fix perdayvolume without end setting error
- Update documentation for better reading and remove unrelated part
- Cleaned up documentation
- Jinja template bugfix in SA-Eventgen app
- Implementation of 'timeMultiple’ option
- Templates for bugs/feature requests
- Fixed Jinja test configuration stanzas
- Fix for default behavior for 'count' edge cases
- Added performance metrics compared to Eventgen 5.x
- New config option for generation-time metrics: outputCounter
- Jinja template fixes
- Timestamp parsing fix
- Output queueing fix for outputMode splunkstream
- Count rater fixes, now supports indefinite generation
- Fixed verbosity bug from 6.3.1
- Added documentation
- Fixed Eventgen Volume APIs
- Improved Eventgen Server Logging
- Corrected Eventgen Server and Controller conf syncing issue
- Adding verbosity options (ERROR, INFO, DEBUG) to Eventgen modinput
- Implemented future event generation support in replay mode
- Fixed Jinja template's missing default values
- Adjusted logging message levels for less verbosity
- Fixed event count off by 1 issue
- Fixed unnecessary empty data generators being created
- Updated dependency list
- Bug fixes for the customer issues
- Documentation upgrade
- Code refactoring for version unification
- Logging improvements
- Fixing SA-Eventgen Dashboard and log searching
- Improving internal logging and fixing splunkd logging issue
- Fixing timestamping in default generator
- Fixing custom plugin integration
- Fixing SA-Eventgen app settings
- Supporting Eventgen 5 backward compatibility with additional features
- Better modinput process management
- Minor Bugfixes with various customer cases
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.