-
Notifications
You must be signed in to change notification settings - Fork 359
2. Installation and Usage
P4T12ICK edited this page May 25, 2020
·
7 revisions
The Splunk Security Content can be used via:
Grab the latest release of DA-ESS-ContentUpdate and install it on a Splunk Enterprise instance.
curl -s https://content.splunkresearch.com | jq
{
"hello": "welcome to Splunks Research security content api"
}
Splunk Security Content can be used from GitHub by executing the following steps:
- Clone the Security Content GitHub project.
git clone [email protected]:splunk/security-content.git
- Change the deployment configuration under deployments/ to fit to your Splunk environment.
- Create virtualenv and install requirements.
pip install virtualenv && virtualenv venv && source venv/bin/activate && pip install -r requirements.txt
- Run bin/generate.py with the following command.
python bin/generate.py --path . --output package -v
- Copy the package folder to your Splunk instance.