Splunk_TA_Example

This is an example TA for Splunk that demonstrates how to use the modular input framework to collect data from an API and send it to Splunk.

Frameworks and tools used

The API is a simple Flask app that returns a list of events.

./scripts/run_locally.sh

python3 -m venv .venv
source .venv/bin/activate
pip install -r requirements-dev.txt
ucc-gen build
ucc-gen package --path output/Splunk_TA_Example

Name		Name	Last commit message	Last commit date
Latest commit History 26 Commits
.github/workflows		.github/workflows
package		package
scripts		scripts
server		server
tests/knowledge		tests/knowledge
ui		ui
.appinspect.manualcheck.yaml		.appinspect.manualcheck.yaml
.gitignore		.gitignore
.pre-commit-config.yaml		.pre-commit-config.yaml
LICENSE		LICENSE
README.md		README.md
additional_packaging.py		additional_packaging.py
docker-compose.yml		docker-compose.yml
globalConfig.json		globalConfig.json
requirements-dev.txt		requirements-dev.txt