Splunk Search

Community Activity

How to Count the percentage of stats by two fields (not total)? [search] \|stats count by ClientName Outcomeexample: Client1 Positive count Client1 Negative count Client2 Positive co... by saksona Engager in Splunk Search 09-05-2023 0 5	0	5
how to prepare db_output in advance Hi all, So here is the deal, I have to prepare some( a lot) db_outputs(using db_connect), however the corresponding t... by boromir Path Finder in Splunk Search 09-05-2023 0 0	0	0
How to to apply the predict function in the count of each Id? I have use case to use the ML feature to detect the anamoly in comm sent from each ID.I was trying to get the same ... by avni26 Explorer in Splunk Search 09-04-2023 0 1	0	1
Is it possible for a search string to pick up instances where the last [say] 3 logs are identical? Hi All We have a couple of jobs that occasionally loop around same code returning same message/log - is it possible f... by Mick_OBrien Path Finder in Splunk Search 09-04-2023 0 7	0	7
Why is configured Field not showing in interesting field? Configured Field is not showing in interesting field. Getting ;;;;;;;;;;;;; value after searching with index="Index N... by AA_01 Explorer in Splunk Search 09-04-2023 0 5	0	5
How to find high-frequency behavioral events using Splunk? There are many accounts with different roles that often use the backend management system to query user information. ... by bestSplunker Contributor in Splunk Search 09-03-2023 0 4	0	4
correlate events between two indexes with timestamp I have an index A and another index B. logs in A have a correlation to logs in B. But the only common field between t... by sigma Path Finder in Splunk Search 09-02-2023 0 2	0	2
Simple splunk table question I am new to Splunk so I'm learning and I know that it can do quite a bit. I am searching for similar network traffic... by mjh New Member in Splunk Search 09-02-2023 0 1	0	1
i crafted these searches how can i add specific filters Deferred Searches: \| rest /servicesNS/-/-/search/jobs splunk_server=local\| search dispatchState="DEFERRED" isSavedSe... by ustng1 New Member in Splunk Search 09-01-2023 0 1	0	1
How to match partial values of field a with partial values of field b ? Hi, I want to match partial values of field a with partial values of field b.. I tried with match/like but no luck..f... by innoce Path Finder in Splunk Search 09-01-2023 0 8	0	8
Combine Values to Return Search Result We are using Splunk OPC Add-On to bring in some tags. We have two specific tags that we are currently looking at. Tag... by NewToSplunk1 Explorer in Splunk Search 09-01-2023 0 8	0	8
Create a table that shows information across multiple events grouped by a common value Hi there,I was wondering if I could get some assistance on whether the following is possible. I am quite new to creat... by SteGiles89 New Member in Splunk Search 09-01-2023 0 1	0	1
Subsearch / query with inputlookup Apologies, I am quite new to Splunk so not sure if this is possible, I have the following simple query: \| inputlooku... by Cranie Explorer in Splunk Search 09-01-2023 0 5	0	5
How to delete duplicate events? I've been looking into some ways to remove duplicate events using a search. Finding them is not an issue. We can use ... by Flynt Splunk Employee in Splunk Search 09-01-2023 12 17	12	17
How to do splunk field extraction from a summary index? I have an event log that looks like this search_name=x, search_now=3.000, info_min_time=1692741600.000, info_max_tim... by Mostafa3081 New Member in Splunk Search 09-01-2023 0 2	0	2
Need help in creating graphs for a value extracted from log Hello Team,I have log like this,File Records count is 2 File Records count is 5File Records count is 45File Records c... by Devi13 Path Finder in Splunk Search 09-01-2023 0 3	0	3
Generate values for IN search How do I use a search to generate values to use inside of an IN search? For example: index=syslog src_ip IN ( \| tsta... by makelovenotwar Path Finder in Splunk Search 09-01-2023 0 3	0	3
Events data processing / rename variables Hi there, im pretty new in Splunk, so sorry if it is easy task. I have following example events in my index - It is a... by PetrK Engager in Splunk Search 09-01-2023 0 2	0	2
splunk How to create empty.csv lookup in web by Siddharthnegi Contributor in Splunk Search 09-01-2023 0 4	0	4
data extraction from log without any links between them Hello Team,I have logs with the below pattern08/31/2023 8:00:00:476 am ........ count=008/31/2023 8:00:00:376 am ....... by Devi13 Path Finder in Splunk Search 09-01-2023 0 4	0	4
Filtering o365 data with a search query I have a question about filtering in data. We have a customer who is requesting a set of fields to be sent in from 03... by Abass42 Communicator in Splunk Search 08-31-2023 0 2	0	2
All hosts without specific event Hello Splunk Community,I'm trying to write a query to show me a chart (or table) for all hosts in my index in the las... by erick4x4 Explorer in Splunk Search 08-31-2023 0 5	0	5
Using Splunkbase Maps+ Hello All,I am hoping for some guidance here. I am using Maps+. It seems to be a decent application.There are two thi... by eholz1 Builder in Splunk Search 08-31-2023 0 0	0	0
Query to get volume of specific word I want to get the volume for a specific word "ERROR" occurrence in a specific server in last 7 days. How to do that? ... by Himani88jain New Member in Splunk Search 08-31-2023 0 1	0	1
How to query a field in DBXQuery that contains colon? Hello,How to query a field in DBXQuery that contains colon? I ran the following query and got an error. Thank you \|... by LearningGuy Motivator in Splunk Search 08-31-2023 0 4	0	4