Splunk Search

Community Activity

	How to get stats by month? Hi,I have my current search giving below output, I want to have stats listed by Month. Can someone help on this oneCu... by SS1 Path Finder in Splunk Search 08-22-2022 0 5	0	5
	Searching for multiple strings within all fields of index Hi I'm trying to search for multiple strings within all fields of my index using fieldsummary, e.g. index=centre_data... by deton0 Explorer in Splunk Search 08-22-2022 0 2	0	2
	How to write a Regex to capture the Path(\Απεσταλμένα) and Subject (TYPICAL MAIN SHELF)? I want to capture the Path (\Απεσταλμένα) and Subject (TYPICAL MAIN SHELF) . I am using below regex Subject\W\s(?<Su... by biswa2112 Engager in Splunk Search 08-22-2022 0 1	0	1
	How to extract the 3 words after [yyy] using regex? Hi, I need help to extract the 3 words after [yyy] using regex, True [xxx] [yyy] Issue with ios phone 11 False [yyy]... by SS1 Path Finder in Splunk Search 08-22-2022 0 2	0	2
	How to rename a value in a table? Hi, Is there a way to rename a specific value in the column of the table. For example: by Edwin1471 Path Finder in Splunk Search 08-22-2022 0 1	0	1
	How to extract the userID? Hi I want to extract the unique user ID for the users that are successfully logging in the KTB system [2/11/00 12:45:... by tankhanandita Explorer in Splunk Search 08-22-2022 0 1	0	1
	Compare values of most recent event to event before -- Show only the difference? How do I compare the values of the most recent event to the event before that and show only the difference?In one exa... by dmbr Explorer in Splunk Search 08-21-2022 0 1	0	1
	How to get the chart of count and percentage by- in one column? So i am representing endpoint url (y-axis) and http status code (x-axis). I can show the count of each url & status c... by djoobbani Path Finder in Splunk Search 08-21-2022 0 10	0	10
	Field values from look up to query? Hi All, I have one dashboard in that I am fetching the results from a input look up file. I am getting the results b... by Santosh2 Path Finder in Splunk Search 08-21-2022 0 2	0	2
	How to find the top 10 events within 24 hours? Hi, I am new to Splunk, I would like to create a command where it can find top 10 events happened within 24 hours. in... by N0Excuse_ New Member in Splunk Search 08-21-2022 0 2	0	2
	How to return string in macro after some logics I have following eval based macro to return a string, in the end I am expecting macro to return something like "earli... by madhavanv New Member in Splunk Search 08-20-2022 0 1	0	1
	How to create table using nested json? Hi All I have a nested JSON in my log event. On that basis, I have to create a dynamic table.{<!-- -->status: FINISHED data... by bharat149 Explorer in Splunk Search 08-20-2022 0 5	0	5
	How to get the combinations of a set of values? Given a set of values (e.g. A,B,C) in a multi-value field, I want to get all the combinations that can be generated b... by teresachila Path Finder in Splunk Search 08-20-2022 0 1	0	1
	How to limit number of column in xyseries with TOP or RARE? Hi,I'm building a report to count the numbers of events per AWS accounts vs Regions with stats and xyseries. It works... by ephenix Explorer in Splunk Search 08-19-2022 0 4	0	4
	Why am I getting inconsistent stats? I am befuddled why the below two searches return different counts for the same period of time. The tstats one returns... by fredclown Builder in Splunk Search 08-19-2022 0 4	0	4
	How to fix "no module named splunklib" error for python splunk sdk on Windows? reated splunk python script and set splunk web on "data input" and added all proceduresbut my script is not running i... by rockzers Path Finder in Splunk Search 08-19-2022 0 4	0	4
	Any guidance on CyberArk TA v1.2 Installation? Hello, I need some guidance to install CyberArk TA in a single-server SPLUNK enterprise environment. How would I proc... by SplunkDash Motivator in Splunk Search 08-19-2022 0 9	0	9
	How do I remove an IP Range from a Search? We currently have the user case - High Number of Login Failures from a single source turned on We would like to excl... by AidanMarkSmith Observer in Splunk Search 08-19-2022 0 5	0	5
	How to plot a graph based on values of a field? I have a search whish results in these events: userlast_eventuser12021-12-30 08:57:36.77user22022-03-12 22:29:52.3... by dritjon Path Finder in Splunk Search 08-19-2022 0 5	0	5
	Getting an intermittent error searching against a kvstore with json using inputlookup and lookup- How to fix? on splunk cloud 8.2.2202.2 issuing the command as follows I get an error one times out of four - \| inputlookup app... by donelliot Path Finder in Splunk Search 08-18-2022 0 1	0	1
	Why doesn't my if clause work completely? So i have the following SPL query: <basic search> \| chart count by path_template, http_status_code \| addtotals fieldn... by djoobbani Path Finder in Splunk Search 08-18-2022 0 4	0	4
	How do I perform field extraction and index the data contained in the one detail field which is json within json? I have a modular input to write to Splunk using event = Event() event.data = json.dumps(data) ew.write_event(event) T... by jet Explorer in Splunk Search 08-18-2022 0 5	0	5
	How to add if clause in a foreach eval [ statement for the following query? Dear splunk community: I have the following search query which basically shows the number of counts and percentage of... by djoobbani Path Finder in Splunk Search 08-18-2022 0 2	0	2
	How to write a search that groups values to be used in a dropdown on a dashboard? Hi All, I am new to Splunk and the SPL in general so I will try and explain as best I can. I have been tasked to pro... by quietferret Loves-to-Learn in Splunk Search 08-18-2022 0 2	0	2
	How can I exclude list of IPs? Hello, I have a .csv with 2 columns: hostname and ip. How can I exclude the IPs from that list ? Tried something like... by danutmatei Explorer in Splunk Search 08-18-2022 0 1	0	1

Get Updates on the Splunk Community!

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas Cisco Live 2026 is almost here, and this ...

What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)

Hello Splunkers, So you searched, “what is the name of the usb key inserted by bob smith?” Not gonna lie… ...

Automating Threat Operations and Threat Hunting with Recorded Future

Automating Threat Operations and Threat Hunting with Recorded Future June 29, 2026 | Register Is your ...

Splunk Search

How to get stats by month?

Searching for multiple strings within all fields of index

How to write a Regex to capture the Path(\Απεσταλμένα) and Subject (TYPICAL MAIN SHELF)?

How to extract the 3 words after [yyy] using regex?

How to rename a value in a table?

How to extract the userID?

Compare values of most recent event to event before -- Show only the difference?

How to get the chart of count and percentage by- in one column?

Field values from look up to query?

How to find the top 10 events within 24 hours?

How to return string in macro after some logics

How to create table using nested json?

How to get the combinations of a set of values?

How to limit number of column in xyseries with TOP or RARE?

Why am I getting inconsistent stats?

How to fix "no module named splunklib" error for python splunk sdk on Windows?

Any guidance on CyberArk TA v1.2 Installation?

How do I remove an IP Range from a Search?

How to plot a graph based on values of a field?

Getting an intermittent error searching against a kvstore with json using inputlookup and lookup- How to fix?

Why doesn't my if clause work completely?

How do I perform field extraction and index the data contained in the one detail field which is json within json?

How to add if clause in a foreach eval [ statement for the following query?

How to write a search that groups values to be used in a dropdown on a dashboard?

How can I exclude list of IPs?

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)

Automating Threat Operations and Threat Hunting with Recorded Future

Datamodel summaries not visible

How to get an extract of threshold values set in s...

how to query OCI Audit logs from Datasafe

SPLUNK ES 8.2.3 Drill Down not appearing

Using Splunk to Analyze Web Traffic & Machine-Gene...

Splunk Search

Join the Conversation