https://github.com/techservicesillinois/phantom-toolbox

Splunk SOAR Application development libraries and utilities
https://github.com/techservicesillinois/phantom-toolbox

libraries phantom soar splunk utiilites

Last synced: 2 months ago
JSON representation

Splunk SOAR Application development libraries and utilities

• Host: GitHub
• URL: https://github.com/techservicesillinois/phantom-toolbox
• Owner: techservicesillinois
• License: other
• Created: 2023-03-17T16:40:01.000Z (about 3 years ago)
• Default Branch: main
• Last Pushed: 2026-03-17T21:24:52.000Z (3 months ago)
• Last Synced: 2026-03-18T10:01:30.444Z (3 months ago)
• Topics: libraries, phantom, soar, splunk, utiilites
• Language: Python
• Homepage:
• Size: 54.7 KB
• Stars: 1
• Watchers: 9
• Forks: 1
• Open Issues: 5
• Metadata Files:
  • Readme: README.rst
  • Changelog: CHANGELOG.md
  • License: LICENSE
  • Code of conduct: CODE_OF_CONDUCT.md
  • Security: SECURITY.md

Awesome Lists containing this project

README

          
.. image:: https://github.com/techservicesillinois/phantom-toolbox/workflows/CI/CD/badge.svg

   :target: https://github.com/techservicesillinois/phantom-toolbox/actions?query=workflow%3ACI%2FCD

   :alt: Build Status

About

=====

The phantom-toolbox provides shared standardized functionality for creating and deploying Splunk SOAR applications.

This project includes:

+ A recipe for packaging a Python SOAR app and needed libraries for deployment to Splunk SOAR

+ A deploy script that can publish a SOAR app through the SOAR API

+ A nicer BaseConnector Python module that requires substantially less boilerplate code repetition

Each of these functions should work in isolation, but be aware that our own apps use all of these elements together.

End-of-Life and End-of-Support Dates

====================================

This product is supported by the Cybersecurity teams at the

University of Illinois Urbana-Champaign on a best-effort basis.

As of the last update to this README, the expected End-of-Life

and End-of-Support dates of this product are 29 September 2027.

Per `Splunk Software Support Policy`_, each minor release of Splunk SOAR is supported for 24 months after the release. Splunk SOAR 7.0.0 Release notes give a release date of 

29 September 2027.

.. _Splunk Software Support Policy: https://www.splunk.com/en_us/legal/splunk-software-support-policy.html

End-of-Life was decided upon based on these dependencies:

- Python 3.13 (31 October 2029) `End of Life for Python Versions`_

- Splunk SOAR 7.0.0 (29 September 2027) `Splunk SOAR 7.0.0 Release Notes`_

.. _End of Life for Python Versions: https://endoflife.date/python

.. _Splunk SOAR 7.0.0 Release Notes: https://help.splunk.com/en/splunk-soar/soar-on-premises/release-notes/7.0.0/splunk-soar-on-premises-release-notes/welcome-to-splunk-soar-on-premises-7.0.0

Installation

============

For product documentation see `phantom-toolbox on PyPi `_.