Realtime alerts of mobile app crashlog

In the previous articles, we discussed about how to include the library to forward crashlog from iOS and Android mobile apps into Splunk Enterprise, install a Splunk app to aggregate the forwarded logs from mobile devices and then perform some simple analytics with the indexed data. If you have been following closely the write-ups and Splunk-ing the valuable data from iOS and Android mobile apps, you might be interested to know how to setup an alerting mechanism in the event of a crash. We are going to discuss in particular how to configure realtime alerts via email with PDF attachment using Splunk Enterprise. It takes very little time ...
» Continue reading

Analyzing iOS data with Splunk Enterprise

This article describes in detail the steps to:

  1. configure the iOS library
  2. install Splunk Enterprise and Splunk app to receive data forwarded from iOS mobile devices
  3. basic Splunk searches


  1. Download the logging library from or
  2. Unzip it and drag the splunkmobileanalytics folder into the project
  3. Select Relative to Project at Reference Type, then click Add.
  4. In the AppDelegate interface file (AppDelegate.h), import Splunk.h, like so:
  5. In the AppDelegate implementation file (AppDelegate.m), provide the SPLUNK_HOST_URL and TCP_PORT values in the message
  6. You are set! Splunk Enterprise is now integrated seamlessly into your iOS mobile app!


  1. Download the latest Splunk Enterprise from
  2. Install Splunk Enterprise (in this
» Continue reading

Mobile Analytics (iOS) with Splunk and Storm (Part 2)

In the previous article “Mobile Analytics (iOS) with Storm” , we discussed about sending stacktrace of uncaught exceptions from apps that run on iOS platform into Storm with the STORM REST API. We hope that the article covers the basic steps to help iOS app developers to jumpstart into realizing the potential of making use of Splunk and Storm to help the developers to develop better quality apps.

Great news … iOS developers are now able to send the above-mentioned stacktrace via TCP into both Splunk Enterprise and Storm; and it is very simple to configure this library into iOS app. The breakdown of the steps are as described below:

[1] Create a Splunk Storm …

» Continue reading

Mobile Analytics (iOS) with Storm

As those who have been following articles about mobile analytics with Storm and Splunk already know, there’s been demand for an iOS library to help iOS app developers to debug their apps. I’m happy to announce that the iOS library is now available for use with Storm REST API input. The installation steps to use this libary are trivial
» Continue reading

Mobile Analytics with Storm (Part 2)

In the previous article “Mobile Analytics with Storm“, we discussed how to configure the logging library for mobile apps to send stacktrace messages to Storm via REST API. To make this logging library more usable and robust, mobile app developers are now able to send invaluable stacktrace messages via TCP (through the Network Inputs option). The configuration steps are incredibly simple and are summarized using the diagram shown below:

  1. Click at “Network data” to enable Storm to receive data via TCP
  2. Click at “Authorize your IP address” so that Storm is receiving data from authorized IP address(es). Please take note of the “IP/Port combination” in “Send data to” – we
» Continue reading

Mobile Analytics with Splunk

The logging library for Android is now added with an option to reroute the crash logs into Splunk Enterprise. Yes, crash logs from Android mobile devices into Splunk Enterprise.
» Continue reading

Mobile Analytics with Storm

This is a logging library developed for mobile app developers to allow better visibility of their apps; particularly to address the instrumentation of crash logs. Bottom-line, no more guessing what kind of errors that end users experience with your mobile apps on their phones. Ensure the highest quality of your apps by harnessing realtime analytics Splunk Storm provides.
» Continue reading

Visualizing Big Data with Splunk

To all .conf attendees, thank you for attending my presentation today. It was really heart-warming to see the strong support from you. The room reached full-occupancy within minutes!

To those that missed this session, there will be an encore session to talk about the internals of the concept viz app. We’ll look at the design and then dive straight into the codes:

Visualizing your Big Data
Castellana 1
Thursday, Sept 13, 2012
11:45am -12:15 pm

See you tomorrow and we’ll see how far your BIG data take you in your journey!
Follow me at @nicholaskey or

» Continue reading

Speech-to-text with Splunk: converting natural language into Splunk search commands

Is that possible at all? At Splunk, we are constantly experimenting ways to make Splunk more usable. This new approach allows users to “talk” to Splunk (with a microphone) and transforms natural language into Splunk search command.

Notice the small little microphone icon in the textfield? That small little icon unlocks a huge potential to make splunk more user friendly.

Interested to learn more about this concept app?
Come join us at the Chalk-talk session on
Monday, September 10, 2012
5pm – 7pm
Gracia Commons, Level 3 Cosmopolitan Hotel

» Continue reading

Visualizing your Splunk /etc/apps directory

Here’s a thought. “Visualizing the content in the /etc/apps directory of your Splunk instance”. Is that possible with Splunk? There’s an app for that.

Here’s a sneak preview of the app …

Come join us and learn more in the Developing on Splunk sessions at .conf!

» Continue reading