Solved

alerte splunk

Posted on 2016-09-15
2
27 Views
Last Modified: 2016-10-05
Hi evryone i need an expert in splunk,
I had threatemulation malware integrated with SPLUNK and I want a script that sends me the alert message in this format to alert me  cap.png
0
Comment
Question by:Alain VOUCHE
  • 2
2 Comments
 
LVL 63

Accepted Solution

by:
btan earned 500 total points (awarded by participants)
ID: 41801825
You may need to check out to use a script or modify the default sendmail.py script. There is one appls, that uses Python Mail for Scripted Alerts (need to login to access @ https://splunkbase.splunk.com/app/230/). Will need to customise from there.

I am thinking if the send email can be based on search for the log in splunk then may be it can better leveraged sendemail with its argument @ https://docs.splunk.com/Documentation/Splunk/6.4.3/SearchReference/Sendemail

Pardon me as I am not savvy as Splunk expert but though above may be useful heads up..

(Sample list of script including "sendemail.py") @ https://github.com/edosurya/splunk/tree/master/etc/apps/search/bin
0
 
LVL 63

Expert Comment

by:btan
ID: 41829529
Suggest answers as kickstart.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

February 24, 2017 — On February 23, Travis Ormandy, a vulnerability researcher at Google, reported on Twitter (https://twitter.com/taviso/status/834900838837411840) that massive stores of data have been leaked by CloudFlare, a company that provide…
Many businesses neglect disaster recovery and treat it as an after-thought. I can tell you first hand that data will be lost, hard drives die, servers will be hacked, and careless (or malicious) employees can ruin your data.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question