Remediate AWS CIS v3.0 and v4.0 with Flowpipe's interactive wizard →
Flowpipe Hub 
Hub
sample
turbot/flowpipe-samples/run-search-in-splunk
Overview
1
Pipelines
0
Triggers
2
VariablesGitHub

Run Search in Splunk

Runs the provided search in Splunk, waits for the search to complete, and returns the results.

Installation

Download and install Flowpipe (https://flowpipe.io/downloads). Or use Brew:

brew tap turbot/tap
brew install flowpipe

Clone:

git clone https://github.com/turbot/flowpipe-samples.git
cd monitoring/run_search_in_splunk

Install mod dependencies:

flowpipe mod install

Connections

No connections are required.

Usage

Run the pipeline to search a query in Splunk

flowpipe pipeline run run_search_in_splunk --arg 'search_query="search *"' --arg insecure=false

Configuration

To avoid entering variable values when running the pipeline or starting the server, you can set variable values:

cp flowpipe.fpvars.example flowpipe.fpvars
vi flowpipe.fpvars
# Required
splunk_auth_token = "eyJraWQiOiJzcGx1bmsuc2Vjc..."
splunk_server = "localhost"