添加链接 注册    登录
link管理
链接快照平台
  • 输入网页链接,自动生成快照
  • 标签化管理网页链接
相关文章推荐
拉风的蘑菇  ·  Solved: How to add a ...·  2 天前    · 
安静的李子  ·  Solved: How to create ...·  2 周前    · 
年轻有为的双杠  ·  MQTT Modular Input - ...·  3 周前    · 
笑点低的毛豆  ·  Solved: Re: How to ...·  3 周前    · 
打酱油的乌冬面  ·  Re: logging ...·  1 月前    · 
细心的针织衫  ·  Bypassing Xamarin ...·  昨天    · 
知识渊博的紫菜  ·  《变形金刚》电影系列第七部即将隆重上映,《变 ...·  2 周前    · 
没读研的冰淇淋  ·  恩施州农科院博士后科研工作站2021年度博士 ...·  3 周前    · 
飞翔的日光灯  ·  百度贴吧·  1 月前    · 
高大的桔子  ·  sana的所有动画链接浏览器入口/sana暗 ...·  2 月前    · 
link管理  ›  Solved: How to create an NSLookup script that allows you t... - Splunk Community
splunk
https://community.splunk.com/t5/Splunk-Dev/How-to-create-an-NSLookup-script-that-allows-you-to-right-click/td-p/203614
安静的李子
2 周前

Any one have any luck creating an NSlookup script that allows you to right-click an IP and get the Name/Address Info?

I am thinking about using a Python script.

Any pointers, don't want to reinvent the wheel...

Thank you

Simpler and pure Simple XML solution would be to add a drilldown capability on IP field.
Alternatively (what I did) - create a another field right next to IP, name it "Whois" and make click on this field to open new browser tab to execute "whois" on IP.

Such as:

<panel> <table> <title>Investigation Results</title> <searchPostProcess base="root_search"> </searchPostProcess> <drilldown target="_blank"> <link field="Whois"> <![CDATA[ http://who.is/whois-ip/ip-address/$row.src_ip$ ]]> </link> </drilldown> <option name="rowNumbers">false</option> <option name="drilldown">cell</option> <option name="count">15</option> </table> </panel> </row> ...

In above case - clicking on "Whois" field will open new browser tab where value of "src_ip" field will be taken and sent as a parameter to "who.is" service. Feel free to replace this with another service of your choice.

Simpler and pure Simple XML solution would be to add a drilldown capability on IP field.
Alternatively (what I did) - create a another field right next to IP, name it "Whois" and make click on this field to open new browser tab to execute "whois" on IP.

Such as:

<panel> <table> <title>Investigation Results</title> <searchPostProcess base="root_search"> </searchPostProcess> <drilldown target="_blank"> <link field="Whois"> <![CDATA[ http://who.is/whois-ip/ip-address/$row.src_ip$ ]]> </link> </drilldown> <option name="rowNumbers">false</option> <option name="drilldown">cell</option> <option name="count">15</option> </table> </panel> </row> ...

In above case - clicking on "Whois" field will open new browser tab where value of "src_ip" field will be taken and sent as a parameter to "who.is" service. Feel free to replace this with another service of your choice.

Splunk, Splunk>, Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners.
 
推荐文章
拉风的蘑菇  ·  Solved: How to add a new row to a lookup using a Splunk qu... - Splunk Community
2 天前
安静的李子  ·  Solved: How to create an NSLookup script that allows you t... - Splunk Community
2 周前
年轻有为的双杠  ·  MQTT Modular Input - Fails to connect via SSL/TLS - Splunk Community
3 周前
笑点低的毛豆  ·  Solved: Re: How to get http error codes count - Splunk Community
3 周前
打酱油的乌冬面  ·  Re: logging configuration generates index out of b... - Splunk Community
1 月前
细心的针织衫  ·  Bypassing Xamarin Certificate Pinning on Android - GoSecure
昨天
知识渊博的紫菜  ·  《变形金刚》电影系列第七部即将隆重上映,《变形金刚:超能勇士崛起》 DLX大黄蜂带同全新的机械人模式「亮眼登场」。 DLX大黄蜂在眼睛部件上新设可互换的红蓝色LED灯,双臂更附上设LED灯效的离子炮,
2 周前
没读研的冰淇淋  ·  恩施州农科院博士后科研工作站2021年度博士后招聘启事--湖北省人力资源和社会保障厅
3 周前
飞翔的日光灯  ·  百度贴吧
1 月前
高大的桔子  ·  sana的所有动画链接浏览器入口/sana暗黑精灵被哥布林抓未增删完整版全集/sana暗影精灵系列资源在哪里看-快问教育
2 月前
Link管理   ·   51好读   ·   Sov5搜索   ·   小百科
link管理 - 链接快照平台