Please see Splunk's official documentation for the initial installation of the app.
To use the dashboards, data must have been imported using the Rapid7 Nexpose Technology Add-On for Splunk.
On the dashboard, results can by filtered by index, site and time period. Selecting a new option in this panel will automatically reload the graphs.
The available site filters are the sites are those returned in the results, filtered from the selected index and time period.
The timestamp will return results from scans that finished during that time period, rather than when the events were indexed.
On the search pages, you may search for specific vulnerabilities and assets. The filter options, such as tags, are scraped from the events returned, after existing selections such as the time period are applied.
The "Additional Filters" box appends the entered text to the Splunk search string used to power the visualizations.
A log file is available to help debug issues contained within <splunk_home>/var/log/splunk/:
Please contact support@rapid7.com for help, including the relevant portion of this log file.
1.0 // Initial release.
1.1 // Renaming.
1.2 // Updates to the search filters.
Updates to the search filters.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.