Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

alerte splunk

Posted on 2016-09-15
2
Medium Priority
?
64 Views
Last Modified: 2016-10-05
Hi evryone i need an expert in splunk,
I had threatemulation malware integrated with SPLUNK and I want a script that sends me the alert message in this format to alert me  cap.png
0
Comment
Question by:Alain VOUCHE
  • 2
2 Comments
 
LVL 65

Accepted Solution

by:
btan earned 2000 total points (awarded by participants)
ID: 41801825
You may need to check out to use a script or modify the default sendmail.py script. There is one appls, that uses Python Mail for Scripted Alerts (need to login to access @ https://splunkbase.splunk.com/app/230/). Will need to customise from there.

I am thinking if the send email can be based on search for the log in splunk then may be it can better leveraged sendemail with its argument @ https://docs.splunk.com/Documentation/Splunk/6.4.3/SearchReference/Sendemail

Pardon me as I am not savvy as Splunk expert but though above may be useful heads up..

(Sample list of script including "sendemail.py") @ https://github.com/edosurya/splunk/tree/master/etc/apps/search/bin
0
 
LVL 65

Expert Comment

by:btan
ID: 41829529
Suggest answers as kickstart.
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is about my experience upgrading my consulting machine to Windows 10 Version 1709 (The Fall 2017 Creator Update)
Last month Marc Laliberte, WatchGuard’s Senior Threat Analyst, contributed reviewed the three major email authentication anti-phishing technology standards: SPF, DKIM, and DMARC. Learn more in part 2 of the series originally posted in Cyber Defense …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question