Splunk Search

Discussions

Thread Info

cartToPurchase(%) by productID : purchases/addtocart

Can you pls share the cartToPurchase(%) by productID : purchases/addtocart query

by Loves-to-Learn Lots in

eval/sum field

Hi folks,What query can I use to sum up my field "viewer.Id" to see how many viewers we have between 01/22/2022 and 0...

by Path Finder in

finding peak times from timechart (Part 2)

Hello, i am aware that there already is a Question from way back called: "finding peak and low times from timecha...

by Path Finder in

If I have an IP address from a search, how do I look for its hostname from a lookup table?

Hello experts, If I have only IP address of hosts from a search, how do I look for its hostname from a lookup tab...

by Engager in

Find records which both do and do not match user search criteria

I have a dataset that looks like: (id, foo, bar, user) that I want to show results for on a dashboard.Given an input ...

by Explorer in

How to create search stirng for the given qestions?

I need the results for this question: What if you wanted to find the top product sold and how many people bought it? ...

by Engager in

Is there a way to surface when auto-finalize has halted a panel's query in a dashboard?

I have a dashboard and some queries in the panels are taking longer than the allowed 60 seconds to complete. They ar...

by Path Finder in

Regex Extraction

How do i extract everything after the 3rd / from the left in: WinNT://PSAD/johndoe The output should be "johndoe"...

by Path Finder in

How to group similar domain/URL patterns?

I would like to group URL fields and get a total count. When I do this: index=example source=ex...

by Engager in

SPL query

How to combine the events from 2 different indexes and display the results in a table, when there are no matching fie...

by Engager in

Blacklisting Splunk Forwarder new process starts

Good Morning, I've followed guides/forums and steps on this site but still cant get my blacklists to work at all. T...

by Engager in

How to extract a filed which is in 4th line in log | Field Extraction

I a trying to Extract the exception Name which is at the 4th line in log generated as below - <CS-1>2022-02-03T14:5...

by New Member in

Trying to find host that send logs over the last 7 days

Hi, i am trying to search for host that are sending logs over the last 7 days. Anything more than 7 days i will like...

by Loves-to-Learn Everything in

Trying to exclude a specific value from an extracted field

Hello all, I am trying to exclude an specific value within a field while retaining others. Can you please let m...

by Path Finder in

How to change a specific value of a field in my events to another value in a search?

i have these events: status | host | comments | ticket_number ... inprogress ...

by Motivator in

How to Regex match literal \U in directory path

I am trying to match a directory path including the string "\Users" but Splunk is throwing an error: | rex ...

by Path Finder in

Chart timing of several events

I have an automated script that creates a log file that marks the beginning and end of specific events during a web p...

by Explorer in

How can i search 1 host at a time when index hits a number of hosts.

I have an index which searches across 10 hosts. I am comparing 2 strings and evaluating the results to see if there i...

by Explorer in

query to consider having an event if its available in any specific weekday in the given time range

Hello, So the requirement was to find gaps of data unavailability(start time & end time) in the given time range,...

by Explorer in

Regex to extract string from field when characters 5 and 6 match pattern

Hello, I have a field 'narrative' which contains long strings describing what happened to a piece of equipment. Wi...

by Engager in

Get Updates on the Splunk Community!

Splunk Search

Discussions

cartToPurchase(%) by productID : purchases/addtocart

eval/sum field

finding peak times from timechart (Part 2)

If I have an IP address from a search, how do I look for its hostname from a lookup table?

Find records which both do and do not match user search criteria

How to create search stirng for the given qestions?

Is there a way to surface when auto-finalize has halted a panel's query in a dashboard?

Regex Extraction

How to group similar domain/URL patterns?

SPL query

Blacklisting Splunk Forwarder new process starts

How to extract a filed which is in 4th line in log | Field Extraction

Trying to find host that send logs over the last 7 days

Trying to exclude a specific value from an extracted field

How to change a specific value of a field in my events to another value in a search?

How to Regex match literal \U in directory path

Chart timing of several events

How can i search 1 host at a time when index hits a number of hosts.

query to consider having an event if its available in any specific weekday in the given time range

Regex to extract string from field when characters 5 and 6 match pattern

Streamline Data Ingestion With Deployment Server Essentials

Remediate Threats Faster and Simplify Investigations With Splunk Enterprise Security ...

Introduction to Splunk AI

AD servers with indexing delays when evt_resolve_a...

Using comparison function within mstats

splunk search statement using keyword from input b...

Ex Cisco - run a report for all DFS users who logg...

Splunk query to list all the queries that time out