Knowledge Management

using splunk machine learning toolkit

sabaKhadivi
Path Finder

to use splunk machine learning toolkit app , do I have to define our network related lookups and put them in showcases algorithms? and replace our custom lookups instead of predefinde mlkt lookups?

Tags (1)
0 Karma

skoelpin
SplunkTrust
SplunkTrust

So you're asking if you want to do the same use cases as the showcase examples, if you can just add your own lookups and do the same? If so, then yeah you could do that, but it would be better to do it with the indexed data rather than lookups.

Also, it sounds like you're trying to find a solution to a problem you don't know you have. You'll have more success if you define a problem then find a solution in the MLTK

0 Karma

sabaKhadivi
Path Finder

so how can I define my problem into the MLTK?

0 Karma

sabaKhadivi
Path Finder

I mean how can I create my own showcase?

0 Karma

skoelpin
SplunkTrust
SplunkTrust

You wouldn't create a showcase, you will create an experiment. Go to the Experiments tab and select which type of use case this will be (i.e. predict a numeric value or category) and name your experiment. Then create a search or lookup table and build a model just like you did in the showcase

0 Karma

skoelpin
SplunkTrust
SplunkTrust

@sabaKhadivi did this answer your question? If so, can you accept?

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...