Introduction

Splunk Labs is a community-managed developer resource for using, programming, and extending Splunk Server. This site hosts SDKs that sit on top of Splunk Server's REST API, and sample projects that use the SDKs to create applications and visualizations.

All resources hosted on this site are supported by the community via the forums and email.

What is Splunk?

Splunk is a search engine for IT data. It's software that lets you search and analyze all the data your IT infrastructure generates from a single location in real time. We call this IT Search. No need for databases, connectors, custom parsers or proprietary consoles. Just your imagination and a web browser! Now you can troubleshoot IT problems and investigate security incidents in minutes, not hours or days. Monitor all your applications, servers and network devices from one place. Report on all your compliance controls in a fraction of the time.

Available SDKs

Splunk Server 4

SDKs for version 4 have not been released yet.

Splunk Server 3

The following SDKs are available for download (versions 3.2-3.4):

Getting Started

1. Have a Splunk installation ready to use (both Free and Enterprise licenses support API access). If you are not familiar with Splunk, you can learn about and download it at www.splunk.com/product.
2. Download one of the SDK packages listed above, depending on your language preference.
3. Follow the sample code included in each download to get started.

The Python SDK has the most complete walkthrough at PythonSdkTutorial

Contributed Projects

See the complete list of projects

Additional Resources

Here are some additional resources that can help you get the most out of Splunk:

• Splunk Labs Forums
• Official Splunk Forums
• Splunk Developer Blog

• Splunk Developer's Guide
• Search language cheat sheet - search language cookbook
• Splunk search language reference - search language reference

For all other comments or questions, contact splunk-labs@splunk.com. Interested contributors are encouraged to contact us!