MCP Server for Splunk

list_sourcetypes

Retrieve all available sourcetypes from your Splunk instance to understand data formats, configure parsing rules, and optimize searches for data modeling and analysis.

Instructions

Discover and enumerate all available sourcetypes from the configured Splunk instance using the metadata command. Sourcetypes define how Splunk interprets and processes different types of data, controlling parsing rules, field extractions, and indexing behavior. This tool returns a comprehensive list of sourcetypes present in your Splunk environment, essential for data modeling and search optimization.

Use Cases:

Data modeling and CIM compliance
Understanding data variety and formats
Troubleshooting parsing and extraction issues
Planning data preprocessing and transformations
Security analysis and event correlation
Building comprehensive search queries

Response Format: Returns a dictionary with 'status' field and 'data' containing:

sourcetypes: Sorted array of all sourcetype identifiers
count: Total number of unique sourcetypes discovered

Input Schema

TableJSON Schema

Name	Required	Description	Default
No arguments

Tool Definition Quality

Score is being calculated. Check back soon.

Install Server

Other Tools

Latest Blog Posts

Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security
Open Source Has a Bot Problem
By punkpeye on March 19, 2026.
open source

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/deslicer/mcp-for-splunk'

If you have feedback or need assistance with the MCP directory API, please join our Discord server