I am uploading DevOps scan result to Splunk, and these scans also have new result and some old flaw that not remediated. How can I match events and return unique.
example SPL
Index= demo sourcetype= demoscan
table date, aaa, ccc, xxx, yyy, zzz
@karu0711 Could you please provide some sample events that you wanna match,
