There are 4 repositories under splunk-addon topic.
Collection of Dashboards for Threat Hunting and more!
A Splunk Technology Add-on to forward filtered ETW events.
Databricks Add-on for Splunk
Splunk TA for sending completion requests to ChatGPT
Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
Splunk technical add-on (TA) for ingesting BigFix client, relay, and server logs. Includes REST inputs for ingesting assets, relevant fixlets, action summaries, and analysis results.
This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup a Suricata Port Mirrored Server
Postfix Add-on for Splunk (Compliant with the Mail CIM model)
An add-on for splunk to collect data from Cisco Intersight.
Splunk add-on providing a custom search command to query Troy Hunt's haveibeenpwned API (https://haveibeenpwned.com/api/v3/) for known breaches of your domains or mail addresses.
This technical addon includes a collection of visualization tools for Splunk.
Aruba Networks Add-on for Splunk
An add-on that adds an Alert Action for creating alerts in TheHive.
DCSO Threat Intelligence Engine (TIE) Add-On for Splunk v8
KV Store Tools Redux app for Splunk
Splunk topics with detailed explanation
GitHub Actions workflow runs add-on for Splunk
Splunk HEC encoding issue repro
Splunk alert action that uploads search results to an Amazon S3 bucket
Censys Splunk Add-on and Apps
Splunk add-on to perform basic searches against the back end of Arkime using the Elasticsearch REST API.
Splunk Add-On App for Cisco DNA Center
Splunk Add-on to import Windows WEC subscription information
Fuzzlookup search command for Splunk. Use fuzzy logic to enrich search results using near-matches in your lookups.
IBM DataPower Add-on for Splunk
Splunk react application
Splunk App and TA that allows to see the configuration changes on your Splunk server ecosystem.
Splunk add-on with minimal working example for streaming XML events
Enrich your Splunk searches with DNS query results for any record type from any DNS server. Uses scripted lookups.
This supporting add-on comes with prebuilt content for Rapid7 InsightVM data to be easily used with Splunk Enterprise Security's Asset database.