Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
URL Toolbox app icon

URL Toolbox

UTBox is a set of building blocks for Splunk specially created for URL manipulation. UTBox has been created to be modular, easy to use and easy to deploy in any Splunk environments. It only needs to be deployed on Splunk Search Heads and the bundles will automatically be sent to your Splunk Indexers. One of the core feature of UTBox is to correctly parse URLs and complicated TLDs (Top Level Domain) using the Mozilla Suffix List. Other functions like shannon entropy, counting, suites, meaning ratio, bayesian analysis, etc, are also available. UTBox has firstly be created for security analysts but may fit other needs as it's a set of building blocks. Enterprise Security users will need to modify the import statement to use UTBox. You should also take a look at URLParser for efficient URL parsing: https://splunkbase.splunk.com/app/3396/ 🐞 For assistance, create issue on: https://github.com/splunk/utbox/issues/new Maintainer: GSS FDSE @ Splunk Code Commiters: FDSE, Daniel, Mayur, Cedric, and Ian.

Built by Splunk Works
splunk product badge
screenshot
screenshot
Latest Version 1.9.4
August 21, 2024
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2
CIM Version: 5.x, 4.x
Rating

0

(0)

Log in to rate this app
Support
URL Toolbox support icon
Not Supported
Learn more
Ranking

#9

in Utilities

#21

in Security, Fraud & Compliance
UTBox is a set of building blocks for Splunk specially created for URL manipulation. UTBox has been created to be modular, easy to use and easy to deploy in any Splunk environments. It only needs to be deployed on Splunk Search Heads and the bundles will automatically be sent to your Splunk Indexers. One of the core feature of UTBox is to correctly parse URLs and complicated TLDs (Top Level Domain) using the Mozilla Suffix List. Other functions like shannon entropy, counting, suites, meaning ratio, bayesian analysis, etc, are also available. UTBox has firstly be created for security analysts but may fit other needs as it's a set of building blocks. Enterprise Security users will need to modify the import statement to use UTBox. You should also take a look at URLParser for efficient URL parsing: https://splunkbase.splunk.com/app/3396/ 🐞 For assistance, create issue on: https://github.com/splunk/utbox/issues/new Maintainer: GSS FDSE @ Splunk Code Commiters: FDSE, Daniel, Mayur, Cedric, and Ian.

Categories

Created By

Splunk Works

Contributors

Mayur Pipaliya

Type

app

Downloads

77,894

Licensing

Splunk Answers

Resources

Login to report this app listing