Splunk Search

Discussions

Thread Info

Request for Assistance

Hi Community, I'm new to this world. I saw some very helpful people helping out new starters so I gathered courage ...

by Explorer in

collect command/sourcetypes and \ character

Came across an interesting behaviour with collect today depending on whether you specify a sourcetype or not. If you ...

by SplunkTrust in

Delete specific entries from KV Store

Hello all, I am working on getting specific entries deleted once the search runs and holds true. Below is the...

by Explorer in

Help on "where not" clause wich doesn't works and conditional formating issue

Hello I use the search below `wire` | fields AP_NAME USERNAME LAST_SEEN | eval USERNAME=upper(USERNAME) | ev...

by Motivator in

Search that combines last 7 days and year-to-date

My current search below pulls findings for current day and year-to-date starting 2/1/2021. I need help with a way to...

by New Member in

How to avoid "search is waiting for input...", even if a user does not include a value in a text input field?

Hi, Sorry if my question is repeated or too naive. I have a text input field accepting "Module name". It works ...

by Path Finder in

Splunk cloud logs delay

I have an implementation with Splunk cloud, as you know with this implementation in the cloud it would be the search ...

by Builder in

dynamic eval statement from a template contained in the event data

i have application logs which contain a message template in a json field (@mt) to convert other json fields into a hu...

by Explorer in

How to properly handle backslashes in data

We use the HttpEventListener to input data into splunk. Our data is pipe ('|') delimited and we have setup field extr...

by Path Finder in

Finding Timings Between Multiple Events

Hello, I am trying to find the timings between multiple calls under the same extracted field of InterchangeId. When...

by Explorer in

Insert results of subsearch as single column in table

Here is what I need to generate: So far I have this search to generate everything but the right-...

by Path Finder in

Outer Join in Splunk

All, I've been trying to find a solution for this for a few days. We have multiple tools sending data in on their ...

by Engager in

Add Rows from Lookup with no matches

I'm trying to use a lookup and some search results to display a table that includes both where something matched in t...

by Path Finder in

how to create third dropdown and link first two dropdown

Hi Team, @gcusello I have created two dropdown (Group and Device) I ...

by Explorer in

Finding hostnames

Hello I am trying to using regex to search a hostname that begins with WB has a 13 characters, character number 10 ...

by New Member in

How to get the Indirect relation using Splunk Search ?

Hello, I have a data in which i have the employee name and the manager name. I want to create a search where if s...

by Explorer in

Compare value with the value of the previous week

Hello, I want to compare the value of the week before last with the value of my search (last week) and put the perc...

by Path Finder in

Display table format

TA TYPEs I...

by Loves-to-Learn Lots in

Splunk - Stat count return wrong values

Hi, I am totally puzzled. I have two (unrelated) Splunk installations with SAME index and event structure (... ev...

by Engager in

how to fetch the filed using regex

Hi, @ITWhisperer @bowesmana @niketn @dmarling Could you Please help me with my doubt Query: ...

by Explorer in

Get Updates on the Splunk Community!

Splunk Search

Discussions

Request for Assistance

collect command/sourcetypes and \ character

Delete specific entries from KV Store

Help on "where not" clause wich doesn't works and conditional formating issue

Search that combines last 7 days and year-to-date

How to avoid "search is waiting for input...", even if a user does not include a value in a text input field?

Splunk cloud logs delay

dynamic eval statement from a template contained in the event data

How to properly handle backslashes in data

Finding Timings Between Multiple Events

Insert results of subsearch as single column in table

Outer Join in Splunk

Add Rows from Lookup with no matches

how to create third dropdown and link first two dropdown

Finding hostnames

How to get the Indirect relation using Splunk Search ?

Compare value with the value of the previous week

Display table format

Splunk - Stat count return wrong values

how to fetch the filed using regex

Synthetic Monitoring: Not your Grandma’s Polyester! Tech Talk: DevOps Edition

Instrumenting Java Websocket Messaging

Announcing General Availability of Splunk Incident Intelligence!

How to use field inside quoted search as a variabl...

Match String which include random numbers with a l...

Windows Event Log of Account Creation Search?

How to convert large bytes to human readable units...

How to convert a large number to string with expre...