This app allows you to setup a threat hunt operation and track it's status as you develop detections. You can attach searches and notes to the operations as you go along saving the copying and pasting to a notepad.
To learn how to use, please see the About > Getting Started section within the application.
Issue: We discovered you need access to the _audit index to really use the feature of attaching searches. We are working on a different approach to make this more accessible.
Initial release version. Contains the base elements to setup a threat hunt operation as well as attached searches and comments to them.
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.