Splunk Search

Testing mmdb file in Splunk is there a command recommendation for risk scoring?


I am currently attempting to test the GeoIP2-Anonymous-IP.mmdb file out in Splunk.
I know we can either place it in a shared folder or create a path in limits.conf but once that is done is there a particular command to pull the risk scoring? Or should this be used as a lookup table instead?

0 Karma
Get Updates on the Splunk Community!

Registration for Splunk University is Now Open!

Are you ready for an adventure in learning?   Brace yourselves because Splunk University is back, and it's ...

Splunkbase | Splunk Dashboard Examples App for SimpleXML End of Life

The Splunk Dashboard Examples App for SimpleXML will reach end of support on Dec 19, 2024, after which no new ...

Understanding Generative AI Techniques and Their Application in Cybersecurity

Watch On-Demand Artificial intelligence is the talk of the town nowadays, with industries of all kinds ...