Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Help with non eng word rex search?

inventsekar
Super Champion
‎06-08-2023 06:53 PM

Hi All... hope you are doing good.. 

so i have been working on a small project
(thirukkural / "kural" - its a collection of 1330 two line songs in tamil language, one of a most famous literature work in tamil language. pls note, bible is the most translated book in whole world and kural is the second most translated book).

i would like to ingest this kural to splunk. its done easily. 

then i wanted to do some basic "sentiment analysis" on kural.. its done as well. (if u r free pls check this 4 mins video of this task at youtube)

thanks to @yannK .. his SPL worked perfect, got it from this page

 

now i would like to search with tamil words.. regular search is working fine. 

 

for example, i can search: 

source="fulltamil.txt" host="laptop" index="thirukkural" sourcetype="thirukkural" செயல்


the rex search i have been thinking:
source="fulltamil.txt" host="laptop" index="thirukkural" sourcetype="thirukkural"
| regex _raw="செயல்$"

 

 

now i would like to search a song which starts or ends with a particular word.. the rex/regex search is not working fine. pls suggest, thanks. 

Labels (1)
Labels
Reply
Get Updates on the Splunk Community!

There's No Place Like Chrome and the Splunk Platform

Watch On DemandMalware. Risky Extensions. Data Exfiltration. End-users are increasingly reliant on browsers to ...

The Great Resilience Quest: 5th Leaderboard Update

The fifth leaderboard update for The Great Resilience Quest is out >> 🏆 Check out the ...

Devesh Logendran, Splunk, and the Singapore Cyber Conquest

At this year’s Splunk University, I had the privilege of chatting with Devesh Logendran, one of the winners in ...