Splunk Search

Community Activity

	How to check which all logs are getting ingested and if there are any gaps in it? Hi, I have to do gap analysis on splunk in order to check which all logs are getting ingested and if there are any... by SonakshiRaiTH New Member in Splunk Search 03-25-2022 0 1	0	1
	How to Parse EMR Log to generate table output? I have a log events (each about 260 lines) related to our AWS EMR Cluster 'performance' metrics. It seems it's just a... by edwinmae Path Finder in Splunk Search 03-24-2022 0 2	0	2
	Can we base on trend percent to set Coloring with Dynamic Trend in Dashboard? With below setup, we can setup the single value dashboard with dynamic coloring change while trendValue change. "tre... by rally0321 Path Finder in Splunk Search 03-24-2022 0 0	0	0
	How to write this cron? Hello Is it possible to use a cron that runs a seach every hour ten minutes after hour and just between 7 AM and 19PM... by jip31 Motivator in Splunk Search 03-24-2022 0 1	0	1
	How to get list of users with user account created date and email associated to it? Hi All ,The requirement is to get all usernames , username created date and email associated to it as belowusername ... by testnoob New Member in Splunk Search 03-24-2022 0 5	0	5
	How to display SPL to chart events? I have a search I can compose using multiple appends and sub-searches to accomplish, but I assume there's an easier w... by adamsmith47 Communicator in Splunk Search 03-24-2022 0 1	0	1
	Where do I locate the Splunk default commands? What is the location of Splunk commands like inputlookup,lookup,mvexpand,multikv,split,stats,eval,chart,tstats in spl... by Saikat001 Explorer in Splunk Search 03-24-2022 0 1	0	1
	How to get alerts when event X isn't followed by event Y within a certain length of time? I need an alert where you get this message "Attempting to send email to:<email>" but you don't ever get the message "... by andrew_burnett Path Finder in Splunk Search 03-24-2022 0 3	0	3
	How to change colors of bars in bargraph chart based on their numerical value? I'm trying to create a column chart (bar graph) in my Splunk (v8.1.3) dashboard that shows the availabilities of a gi... by bsg273 Path Finder in Splunk Search 03-24-2022 0 2	0	2
	Why is the Join Operation Is not working properly? I am seraching as below but my join operation is not bringing results from the join for only couple of imei/records. ... by sercankarvar Observer in Splunk Search 03-24-2022 0 4	0	4
	How to able Formatting _time to be used in the timepicker? Hi everyone, Pretty new to Splunk and would really appreciate your insight on my current project. Currently creating ... by elomotanpru Path Finder in Splunk Search 03-24-2022 0 9	0	9
	Does this mean that _raw cannot be used with tstats? Hi Splunkers,in my tasks I performed an exam of some already Splunk searches and one of these is about a Log4j vulner... by SIEMStudent Path Finder in Splunk Search 03-24-2022 0 1	0	1
	Having trouble with rex command I have below raw string 03 Mar 2022 10:08:18,188 GMT ERROR [dbdiNotificationService,ServiceManagement] {} - Caught R... by bhaskar5428 Explorer in Splunk Search 03-24-2022 0 2	0	2
	How to display the results matching the same fields as another fields? Hi All, I was working on a case where i have 2 fields extracted as "actordisplayName" & "targetUser" in the same raw ... by ChethanNP Explorer in Splunk Search 03-24-2022 0 6	0	6
	How to have exclude weekend in the splunk dashboard as a input button? Hi Folks,I have been working on a dashboard that displays result as a timechart grouping by days.I see results are di... by peterfox1992 Explorer in Splunk Search 03-24-2022 0 2	0	2
	Is there a way for me to read the contents of the script from the search bar? we have a dashboard that checks endpoint health and creates a message, "Endpoint XYZ is available" The source is a pa... by ccntech Explorer in Splunk Search 03-24-2022 0 1	0	1
	Please help with Date extraction from below string i have system column "_time" with below output 2022-03-16 11:12:18.723i would like segregate date and time by rex com... by bhaskar5428 Explorer in Splunk Search 03-24-2022 0 5	0	5
	How to create drilldown from a table with time in order to display more details? hello As you can see, I use a table with one hour bin span and I need to drillwown on every row in order to display m... by jip31 Motivator in Splunk Search 03-24-2022 0 10	0	10
	How to create search for CPU linux to load average? Hi , I need the help to write splunk query for calculating CPU Linux load average for last 1,5 and 15 mins. I have sp... by mm12 Explorer in Splunk Search 03-24-2022 0 1	0	1
	How to view only one data in graph when there is a list ? I have list of items plotted in line graph which is basically time-series data. I would like to have an option to sel... by R_Ramanan Loves-to-Learn in Splunk Search 03-24-2022 0 3	0	3
	How to write this complex search displayed with a transpose _time command? Hello I use a complex search with display results ordered by time in a table As you can see the time period is today... by jip31 Motivator in Splunk Search 03-24-2022 0 1	0	1
	How to compare nested case statements with eval Hi, I am trying to use case keyword to solve a multiple nested statement but it is just giving me output for the els... by anu1729 Loves-to-Learn Lots in Splunk Search 03-24-2022 0 2	0	2
	Help creating regex extraction Gentlemen,We are ingesting Windows SYSmon logs via TA-microsoft-sysmon , and the raw events are showing in XML format... by neerajs_81 Builder in Splunk Search 03-23-2022 0 4	0	4
	How to replace values outputted from \|stats with values from another search? Hello! I am attempting to take a variety of values for a single field and essentially use another search from a diffe... by DenverGeo Engager in Splunk Search 03-23-2022 0 2	0	2
	Why is Splunk timechart not displaying data when last 30 days range is selected? Hi Folks, I'm new to Spunk and I was working on creating a dashboard for one of my Application. Dashboard is built bu... by peterfox1992 Explorer in Splunk Search 03-23-2022 0 6	0	6