How to Ingest, Parse, and Make Useful Dashboards from Systems When No Splunkbase App Exists

This is a real case scenario of taking a tool that I use every day (WeKan) and how to get information out of that system and get it into Splunk. This is capstone project for all of the tutorials that I have done in the past. Look below for links to other trainings I have provided that give insight into how to do all of the parts of this project.

00:00 Splashscreen
00:10 Introduction
02:00 About the WeKan tool
07:30 About mongodb and how to get the data out of mongodb
08:05 mongodump
08:27 Build script to automatically pull out WeKan logs
13:37 Build Custom WeKan Splunk app
14:45 Creating a Sample data file
15:10 Parsing the Logs with Cribl
24:30 Setup Monitoring Stanzas in Splunk
29:05 Build a Useable Dashboard to View WeKan Logs
30:20 Using Inputs and Tokens on the Dashboard
33:20 Using Lookups to Dynamically change the dashboard
34:50 Base Searches
39:10 Filling out HTML from tokens
45:55 Making Reports
46:27 Making a Dashboard in Dashboard Studio
47:10 Tokens and data configurations
49:21 Tokens in Dashboard Studio
51:40 Search all data when you can't remember where your card is.

Google installing WeKan on the Linux flavor of your choice.

Link to download MongoDump
https://www.mongodb.com/docs/database-tools/mongodump/

Link to download Cribl
https://cribl.io/

Join this channel to get access to early release of videos and exclusive training videos that will help make you L.A.M.E. ninja: https://www.youtube.com/channel/UCdSFSscTkK8oGd_kD_eENFw/join

Visit our discord channel to post questions and suggestions for what you want to learn. https://discord.gg/k5M6eme2CK

The latest L.A.M.E. Splunk apps are available at
https://www.github.com/lameCreations

Видео How to Ingest, Parse, and Make Useful Dashboards from Systems When No Splunkbase App Exists канала Lame Creations