Skip to content

hypnot0ad/splunk-app-twitter

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

42 Commits
 
 
 
 
 
 
 
 

Repository files navigation

Twitter App for Splunk

This app provides a scripted input for Splunk that automatically extracts tweets from Twitter's 1% sample stream. It is tested on Splunk 6.0 and 6.1. Splunk 5.0 and earlier is unsupported.

A number of dashboards and searches are also included to demonstrate how Splunk can be used to visualize Twitter activity.

Installation

  • Install the app by copying the twitter2 directory to $SPLUNK_HOME/etc/apps/twitter2.

  • (Re)start Splunk so that the app is recognized.

  • In the Splunk web interface, from the App menu, select the Twitter app and press "Continue to app setup page".

  • Enter the OAuth settings for a Twitter application that will be used to access tweets from the sample stream and click "Save".

    If you don't already have a Twitter account, you can sign up for one at https://twitter.com/. If you need to create a Twitter application for accessing tweets, you can create one at https://dev.twitter.com/apps. It need only be enabled for read access to Twitter data. See https://dev.twitter.com/docs/application-permission-model for details on the Twitter application permission model

  • Wait 15 seconds or so for some tweets to be extracted.

  • Run the search index=twitter in Splunk to see the events. If you don't see any events, open $SPLUNK_HOME/var/log/splunk/splunkd.log and look for errors issued by ExecProcessor related to the $SPLUNK_HOME/etc/apps/twitter2/bin/twitter_stream.py script.

Dashboards and Searches

Views > Twitter General Activity

Provides information about trending activity during the last 15 minutes.

Views > Twitter Per-User Activity

Drills down into activity related to a particular user or hashtag.

This view could be used as a social dashboard for tracking activity related to a user of interest.

Searches & Reports > Tweet Locations

NOTE: This view requires Splunk 6.1 or later.

Displays the locations of tweets on a map.

License

This software is licensed under the Apache License 2.0. Details can be found in the file LICENSE.

About

Twitter application for Splunk

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • Python 99.9%
  • Other 0.1%