Splunk Search

Community Activity

Remove Alike Values in a Field Hello Splunk Answers, How can I remove this duplicate line? See sample below:From: row1 row2 row31.1.1.1 X... by whitefang1726 Path Finder in Splunk Search 01-06-2022 0 6	0	6
How to Search for the Rows If at Least One Row in the Whole source Meets a Criteria I want to search like:index=whatever "term_1" AND (at least one event in the source of the found record contains term... by hpaknia Explorer in Splunk Search 01-06-2022 1 4	1	4
Exclude IP address returned from subsearch in main search Hello,I've got a search query where I'm looking for unexpected ssh connections to my instances, but I've got one serv... by apeadape Explorer in Splunk Search 01-06-2022 0 1	0	1
Break up search over large timeframe into searches of smaller timeframes TLDR: I'm trying to automate the large 25 day search to break up into 25 separate one day searches.I'm updating a loo... by cyberdiver Explorer in Splunk Search 01-06-2022 0 6	0	6
Log4J Search slows down after a few minutes (Large Query) Log4J Query: index=* \| regex _raw="(\$\|%24)(\{\|%7B)([^jJ][jJ])([^nN][nN])([^dD][dD])([^iI][iI])(:\|%3A\|\$\|%24\|}\|%7... by cyberdiver Explorer in Splunk Search 01-06-2022 0 4	0	4
Creating a new field from another field Hi, Wondering if anyone can help. I am trying to create a new field called FS_Owner_Mail using \|eval from both the ma... by emcglade Engager in Splunk Search 01-06-2022 0 4	0	4
Choose one result in Splunk table Query Hello All, 1) I would like to add radio button / any way to select - one of the results of my below REST query search... by PraveenaR Explorer in Splunk Search 01-05-2022 0 1	0	1
Search based on two different dropdowns I have two dropdowns. I only want to run a single dropdown everytime for a search.Closed Dropdown has token value as... by martin61 Engager in Splunk Search 01-05-2022 0 1	0	1
.. .. by amys Engager in Splunk Search 01-05-2022 0 0	0	0
Find Ids of a table not in other search table I have 2 type of search messages -Problem #1Problem #5and other one goes like this -Solved problem_id successful: 1So... by mangaldev Engager in Splunk Search 01-05-2022 0 1	0	1
Daily and weekly discrete count in the same query? I've got some queries I need to do periodically that use the exact same base search, one with teh weekly uniques and ... by dantose Explorer in Splunk Search 01-05-2022 0 3	0	3
java curl splunk search produces error in SearchParser - missing a search command In Java, I am trying to call a curl command that has a Splunk search to get contents of a lookup file.I've used https... by diptij Path Finder in Splunk Search 01-05-2022 0 2	0	2
How: transform csv field value, split, join and create dynamic field value pair I use a lookup to define alert/SLO specifications. I use the lookups as input filters to my alert searches where I ca... by cmckenna Explorer in Splunk Search 01-05-2022 1 5	1	5
extract pattern like splunk pattern Hi, How can I extract pattern of raw data like pattern tab in splunk search? Thanks by indeed_2000 Motivator in Splunk Search 01-05-2022 0 6	0	6
How to write field name in its value Hi,How can I write the name of a field in the value like I have :test_1test_2test_3warnerrorcritical I want :testtest... by mah Builder in Splunk Search 01-05-2022 0 1	0	1
How to reorganize a table Hello,I have a table like that :customerprod_1prod_2prod_3customer_1 green customer_2red orange and I would like to c... by mah Builder in Splunk Search 01-05-2022 0 2	0	2
Limiting and grouping OTHER in stats command Hi! I have a summarized field (docsReturned) by customer id that I would like to make a top X pie chart of, while sum... by Fredrik New Member in Splunk Search 01-05-2022 0 0	0	0
filter time for specific range \| savedsearch cbp_inc_base \| eval _time=strftime(opened_time, "%Y/%m/%d") \|\| bin _time span=1d here _ time is giving ... by neethan Path Finder in Splunk Search 01-05-2022 0 10	0	10
Want to merge two query with different fields in one First queryindex = pcf_logs cf_org_name = creorg OR cf_org_name = SvcITDnFAppsOrg cf_app_name=VerifyReviewConsumerSer... by nikhilup New Member in Splunk Search 01-05-2022 0 2	0	2
How to count every 15mins with complete time bucket If I use bin _time as time span=15m \| stats count by time on 17:20 for the past 1 hour, the result would be like...ti... by Anita Engager in Splunk Search 01-05-2022 0 3	0	3
unable to convert epoch fomat to human readable format When i convert following timestamp to human readable format i am getting "12/31/9999 23:59:59" instead of '01/04/22 0... by kapoorsumit2020 Loves-to-Learn Everything in Splunk Search 01-04-2022 0 3	0	3
Foreach command with eval if Hi, I have a table like that :teststate_Astate_Bstate_C1okko- WARNko - ERROR2ko- WARNokok3okokok I would like to crea... by mah Builder in Splunk Search 01-04-2022 0 4	0	4
lookup command not working while inputlookup working Hi All,I have a .csv file named Master_List.csv added to splunk lookup. It has the values of the fields "Tech Stack"... by Mrig342 Contributor in Splunk Search 01-04-2022 1 4	1	4
Can a subsearch return only the value (without the fieldname)? (Copied from a legacy Splunk Forums post by user bpf) Hello I have the following problem: I have a Name. With this... by gkanapathy Splunk Employee in Splunk Search 01-04-2022 4 8	4	8
SSLError This codeimport splunklib.client as clienthost = "127.0.0.1"port = "8000"username = "---"password = "----"service = c... by ashraf_adeelaa New Member in Splunk Search 01-04-2022 0 0	0	0