Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Stats count on list of values from lookup and how many times they are displayed in the results.

ajinaqvi
New Member
‎03-09-2018 06:45 AM

I am currently running a dashboard with a datamodel. The dashboard is run against bulk IOCs from a lookup. How can I put up a panel in a dashboard that will display the list of IOCs and count of IOCs in results?

0 Karma
Reply

king2jd
Path Finder
‎03-09-2018 12:57 PM

Without seeing your field names, I am taking a shot in the dark. I imagine it would be something like this:

lookup command|stats count by IOC

Too add up the total counts of all IOC's , use. |addcoltotals at the end of your search.

-Jordan

Reply

ajinaqvi
New Member
‎03-29-2018 12:53 PM

Will this provide stats count on how many times an IOC is found when running against an index or data model?

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Decoded: Service Maps vs Service Analyzer Tree View vs Flow Maps

It’s Monday morning, and your phone is buzzing with alert escalations – your customer-facing portal is running ...

What’s New in Splunk Observability – September 2025

What's NewWe are excited to announce the latest enhancements to Splunk Observability, designed to help ITOps ...

Fun with Regular Expression - multiples of nine

Fun with Regular Expression - multiples of nineThis challenge was first posted on Slack #regex channel ...