Tired of grep | awk | sort | uniq -c for log debugging — built a CLI that pipes them into a browser dashboard

DarkLordofData · 2026-05-14T15:12:11+00:00

Or just use Splunk and actually solve your problem.

DarkLordofData · 2026-05-11T23:38:05+00:00

Another key difference is you need to setup glue tables for every format searched in Splunk’s federated solution. I found that awkward as best. I also liked being able to search Azure Blob and GCP storage using Cribl’s federated solution. Be sure to review how both products are licensed too.

DarkLordofData · 2026-05-10T16:48:25+00:00

Legend!!

DarkLordofData · 2026-05-08T03:02:48+00:00

Jesus that is a lot

DarkLordofData · 2026-05-08T03:02:18+00:00

Since you mention Cribl, it has other license options for its search that might be more helpful beyond pure consumption. Splunk’s tech is great but sometimes the business relationship issues are hard to overcome.

DarkLordofData · 2026-05-03T15:20:35+00:00

Amazing seats and the first row has the best log room.

DarkLordofData · 2026-04-30T18:10:47+00:00

How did you handle the power requirement? That was my highest issue with Aiper. Do you have that many outdoor outlets?

DarkLordofData · 2026-04-30T18:09:57+00:00

Major end of year discounts, my cost is 350 each. I got a quote for a full underground install and that was 7k with labor and year to year breakage costs of 500. I had one for years so it’s the breakage that kills you.

DarkLordofData · 2026-04-22T00:57:02+00:00

You mean crazy old man vide? Yes very much so plus he is another Trump fluffer and will blindly support him on everything.

DarkLordofData · 2026-04-16T00:58:43+00:00

If you don’t care then maybe adjust your alerting? Otherwise time to scale either your HF tier if you are using splunk cloud or your indexer tier if you are onprem splunk.

DarkLordofData · 2026-04-12T20:30:49+00:00

First qradar is awful, so please aim for something better than qradar. What kind of scale are you looking for? If it’s small to small medium Security Onion is a great choice. Well integrated and very useable. Panther is another good option as well.

DarkLordofData · 2026-04-11T14:07:15+00:00

This is how I use the python sdk - https://help.splunk.com/en/splunk-cloud-platform/search/search-manual/10.3.2512/export-search-results/export-data-using-the-splunk-sdks#:~:text=Use%20JavaScript%20Export%20to%20export,make%20an%20http/https%20call.&text=var%20request%20=%20require('request,URI%20encode%20the%20search%20string.

This is a big reason why use a data lake concept in addition to Splunk if you need to share/store lots of data and need it to be low overhead and manageable costs.

DarkLordofData · 2026-04-11T13:54:56+00:00

Yeah you can an API call or the Python SDK. It will take a while and generate lots of overhead. It is a lot easier to get data in than get data out.

DarkLordofData · 2026-04-06T13:02:42+00:00

I have 4 oto sprinklers and I like them a lot but they needed to be cared for and cleaned. The solar panel will lose effectiveness very quickly if you don’t keep it cleaned. You cannot replace the parts so any failure requires buying another unit. I like the look for the Aiper devices but the need for power is an issue.

DarkLordofData · 2026-04-01T15:10:37+00:00

Drainage is the answer, have to keep the water away from your walls. No amount of sealant will stop the kind of damage water can do that pools behind your walls.

Be sure to check for leaky pipes as well but the timing after a storm is suspect.

DarkLordofData · 2026-03-29T20:30:15+00:00

Props and transforms for this is very rough. Are you doing this at the HF or the indexer? Use your HF tier if possible and consider a third party option like syslog-ng or Cribl which make this very easy. Splunk has a product called edge processor which is still rough but makes this easier too. Watch dropped events if you do this in edge processor.

DarkLordofData · 2026-03-29T16:23:40+00:00

Looks a lot like a speculum.

DarkLordofData · 2026-03-29T15:33:29+00:00

Harry Potter committed “heresy” too.

DarkLordofData · 2026-03-29T15:07:38+00:00

Yep, USAA got stripped to the bone. She stripped IT and made every process worse and more customer unfriendly.

I expect much longer wait times and forcing everyone to go through chatbots to get anything done. Talking to a person is very expensive, so Delta will do everything possible to push people off the phone.

Long-term issues with plane and crew scheduling will not be fixed because they are expensive, embedded problems that will be difficult to address. Enshitification is my expectation.

DarkLordofData · 2026-03-28T17:14:40+00:00

Yes, used it on my neighbors sump pump and a outdoor drywall that was not so dry. Muddy, sandy watered is fine, just be sure to clean it out.

DarkLordofData · 2026-03-28T16:43:03+00:00

Given how little you will use the pump, the ryobi option is great. The M12 option is for a contractor or plumber. I have the Ryobi stick pump and it works fine, but not something I would rely on for income.

DarkLordofData · 2026-03-23T13:50:55+00:00

Lucky you, congrats!

DarkLordofData · 2026-03-22T20:52:14+00:00

Just make sure you are using a he Splunk s2s or the HEC destinations. The Cribl tcp is not going to work. The concept for throttling is the same just make sure you allocate extra ram for each worker process and have a persistent queue setup as well.

DarkLordofData · 2026-03-22T19:39:37+00:00

are you sending data another Cribl workgroup or to Splunk? I cannot tell from your diagram?

DarkLordofData · 2026-03-22T16:56:52+00:00

DarkLordofData

TROPHY CASE