Splunk Search

Community Activity

Lookup Table with CIDR, running but no matches Hello, I think this is a simple answer but I'm not able to find a solution. I created a lookup table that looks like... by yoshileigh66 Explorer in Splunk Search 11-06-2023 0 6	0	6
Return "Yes" if field exists in another field in the table Hello! I have run a search which results in displaying a table. In this table, I would like to check if a combination... by nanuli Engager in Splunk Search 11-06-2023 0 4	0	4
How to count valuse and display againts another field? Sorry, I am unsure how to describe what I am looking for using Splunk terminology, and I am sure that is why I am hav... by Matrix20085 Explorer in Splunk Search 11-06-2023 0 4	0	4
rare command hello!I have this search, and I want to add more parameters like time etc.the thing is - when I'm using rare its show... by Shakira1 Explorer in Splunk Search 11-06-2023 0 5	0	5
Strptime() Eval command returning empty What is wrong with the query below, it does not return any value in the timestamp field. The attached image shows a r... by olawalePS Path Finder in Splunk Search 11-06-2023 0 3	0	3
visualize stats(sum) Hello SplunkersI can use stats count and visualize the output as a single value so its nice and big in that panel in ... by splunk_novice99 Explorer in Splunk Search 11-05-2023 0 4	0	4
How to use addcoltotals to calculate percentage? How to use addcoltotals to calculate percentage?For example: my search below scoreSum % is empty Thank you for you... by LearningGuy Motivator in Splunk Search 11-05-2023 0 3	0	3
addcoltotals I have used the below query to get the total from that columnIndex="" source=""\| fields queryHits \| table queryHits ... by nithys Communicator in Splunk Search 11-04-2023 0 2	0	2
Filter transaction Hii have log line like this,1-need to group by them by ID,2- filter those transactions that has T[A] #txn116:30:53:00... by indeed_2000 Motivator in Splunk Search 11-04-2023 0 15	0	15
How to find field value, based on where condition, and assign to variable? Good Morning!I rarely get to dabble in SPL, and as such, some (probably simple) things stump me. That is what brough... by sarge338 Path Finder in Splunk Search 11-04-2023 0 6	0	6
How can I pass dynamic values to the IN operator? I tried this : .... myField IN ([search ..\| table myField])Where the values passed to the IN operator will be calcul... by yk010123 Path Finder in Splunk Search 11-04-2023 1 7	1	7
Splunk Search command This would be a piece of cake for someone who uses SPLUNK.I am doing a search using the 'stats', çount' and sort com... by Mouseman123 Explorer in Splunk Search 11-04-2023 0 3	0	3
How can I fix deep learning toolkit fit error? Hi i'm trying to create a vanilla dense neural network in the splunk deep learning toolkit, but when i try to use the... by mrcamilo01 New Member in Splunk Search 11-03-2023 0 1	0	1
Skipped searches issue We have standalone environment and are getting error "the percentage of non-high priority searches skipped (61%) over... by Helios Loves-to-Learn Everything in Splunk Search 11-03-2023 0 4	0	4
Want a Dashboard to display all exceptions occured in the last 30 days in a graphical way. Hi Team,I want to have a query which displays me all types of exceptions occured in the last 30 days in a table way o... by Harish429 Loves-to-Learn Lots in Splunk Search 11-03-2023 0 7	0	7
Find rare Transaction flow HiIs there anyway to find transaction flow like thisi have log file contain 50 million transactions like this16:30:53... by indeed_2000 Motivator in Splunk Search 11-03-2023 0 11	0	11
How to calculate sum of a field based on other distinct field? Hello,How to calculate sum of a field based on other distinct field?For example: How to find sum for score of distinc... by LearningGuy Motivator in Splunk Search 11-03-2023 0 7	0	7
Search across nested json to get employee details for different dates I have a response from one of the client application like this:{<!-- --> "employees": {<!-- --> "2023-03-16": {<!-- --> "1": {<!-- --> "id": 1, "name... by raunakp Engager in Splunk Search 11-03-2023 0 3	0	3
How to change the column name after timechart output I am created below query to get the hourly report of certain tasks. I go the final timechart values for four differen... by ravir_jbp Explorer in Splunk Search 11-02-2023 0 1	0	1
Work out how much data splunk searches per day / month / on average Hello, we are trying to work out how much data our Splunk instances search through on average.so we've written a sear... by lavster Path Finder in Splunk Search 11-02-2023 0 0	0	0
Correlation to search multiple ST for matching rexed values Looking to build 1 correlation search to do the following:Bring an extracted field name from 1 ST and search that fie... by Capttech Explorer in Splunk Search 11-02-2023 0 3	0	3
Extraction of Multiple events (URLS and IP addresses) from text files Hi, We receive daily emails with lists of IOC's for malware and phishing alerts, each email may contain multiple ip a... by capilarity Path Finder in Splunk Search 11-02-2023 0 1	0	1
How to apply predict command on multiple fields returned by timechart command? Hello @kamlesh_vaghela,This is with regards to your solution posted on the below thread: -https://community.splunk.co... by Taruchit Contributor in Splunk Search 11-02-2023 0 1	0	1
Search in square brackets I don't understand how this works, what should replace the square brackets in this situation or what does the search ... by vanheer Explorer in Splunk Search 11-02-2023 0 2	0	2
Passing Multiselect macro input token to search Hi Splunkers! I would like to pass two macros as a token to a base search when multiple values in multiselect is sel... by smanojkumar Contributor in Splunk Search 11-02-2023 0 0	0	0