Splunk Search

How do i extract virus info from a linux log file into my splunk dashboard ?

rkris
Explorer

 

splunk_qns2_p3.PNGsplunk_qns2_p2.PNGsplunk_qns2_p1.PNG

I have uploaded the log file containing the virus information above into splunk but i'm not sure how to create a search query to present it in my dashboard? 

Labels (2)
0 Karma

to4kawa
Ultra Champion

When you ask about the REGEX, please provide sample text.

https://github.com/Graylog2/graylog-guide-snort

this is REGEX sample. you can do it.

0 Karma
Get Updates on the Splunk Community!

.conf24 | Day 0

Hello Splunk Community! My name is Chris, and I'm based in Canberra, Australia's capital, and I travelled for ...

Enhance Security Visibility with Splunk Enterprise Security 7.1 through Threat ...

 (view in My Videos)Struggling with alert fatigue, lack of context, and prioritization around security ...

Troubleshooting the OpenTelemetry Collector

  In this tech talk, you’ll learn how to troubleshoot the OpenTelemetry collector - from checking the ...