Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

REGEX expression

Paul_tcs
Explorer
‎07-05-2013 05:04 AM

Hi xperts,

someone help me to write the regex expression. with some examples.

Tags (2)
0 Karma
Reply

krugger
Communicator
‎07-05-2013 05:10 AM

Give us an example of what your data looks like and what you want to extract from it.

Reply

MHibbin
Influencer
‎07-05-2013 05:10 AM

That's a very vague question. An example of your data would help us to help you.

However to get you started... The following references are pretty useful:

http://www.regular-expressions.info/reference.html
http://www.regular-expressions.info/tutorial.html

You can also test and play with regular expressions using the following tool:

http://gskinner.com/RegExr/

You can also look at the following documentation to get you started in Splunk... start to learn with the IFX (Interactive Field eXtractor), which will show you the regex it has used:

http://docs.splunk.com/Documentation/Splunk/5.0.3/Knowledge/Addfieldsatsearchtime

Hope this helps.

Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Deep Dive: Accelerate threat investigation with Splunk’s AI Assistant in Security

AI is one of the biggest topics in the market today, and for security teams, its value goes far beyond the ...

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...

Detection Engineering Office Hours: Real-World Troubleshooting & Q&A

[REGISTER HERE] This thread is for the Community Office Hours session on Detection Engineering Office Hours: ...