Splunk Search

Community Activity

Check if a time field was created less than 75 days back So this is what my data looks like. I need to check if the last column value is in the range of last 75 days. In othe... by sam1010 Explorer in Splunk Search 09-08-2021 0 1	0	1
timechart mistakes I am getting the events from an Australian timeline. But time running in my laptop is IST. So, when i try to calculat... by haripotu Loves-to-Learn Everything in Splunk Search 09-08-2021 0 1	0	1
Searching result using two inputlookup collections I need to find the rows from the first inputlookup collection that has matching field values from the second inputloo... by ssamant007 Explorer in Splunk Search 09-08-2021 0 3	0	3
MLTK LogisticRegression probabilities=true only showing first event probability I Have trained a LogisiticRegression model by using TFIDF data (3K events in a month) as input successfully using pro... by eduardoduarte Explorer in Splunk Search 09-08-2021 0 0	0	0
Add manual input through text box into a new column in a table in splunk Hi ,I want to add a text box in a dashboard panel and the manual input value of that textbox should be added to a new... by nikitha15 Explorer in Splunk Search 09-08-2021 0 0	0	0
Large Json Array, Spath and stats So I have a large JSON array that is now being brought in and ingested correctly, but I cannot do any stats function ... by jondukehds Explorer in Splunk Search 09-08-2021 0 2	0	2
sendemail for each search result values with 20 line body content Hi,I have a requirement where my search displays the below result and the out is stored in CSVNow in another query I ... by shrinivaskittur Explorer in Splunk Search 09-07-2021 0 2	0	2
IP address for the last occurrence Can someone please help with the Splunk query for the below scenario:I want to extract last IP address by a regular e... by VS0909 Communicator in Splunk Search 09-07-2021 0 10	0	10
Need Regex to pull all the pid,PPID and MD5 values by SabariRajanT Path Finder in Splunk Search 09-07-2021 0 2	0	2
Discard results of one month / Time range adjusted? Hi all!I would like to have only the results in orange and red until August. I don't want to show the September resul... by anac Explorer in Splunk Search 09-07-2021 0 10	0	10
How to sort the counts of the sub-category items in the categories? Hi Splunkers,My event example is as follows. fruit_type size --------------- apple big banana medium melon smal... by homer07 Explorer in Splunk Search 09-07-2021 0 11	0	11
Show subtotals as percentages in Pivot Statistics Table I have a Pivot displayed as a Statistics Table, which is defined by the following search: \| pivot My_Object SearchOb... by postrational Engager in Splunk Search 09-07-2021 1 3	1	3
How to edit my timechart search that shows the number of successful/failed logins over time, with a distinct count by user? I am trying to find the number of successful/failed logins to my machine over time with a distinct count by user. Th... by WhatTheSplunk Engager in Splunk Search 09-07-2021 1 3	1	3
REX-Field Extraction Issues with Special Characters Hello,I have following Sample Event.Q17CNB_L_0__20210630-235755_5828.html@^@^2021/06/30@^@^23:57:55@^@^ Q17CNB @^@^I ... by SplunkDash Motivator in Splunk Search 09-07-2021 0 3	0	3
Regex for last IP Address Can someone please help with the Splunk query for the below scenario:I want to extract last IP address by a regular e... by VS0909 Communicator in Splunk Search 09-07-2021 0 5	0	5
winprintmon search results aren't showing the proper results for "total_pages" Hello, I'm having some issues with results for "total_pages" and "page_printed" field(s) showing the incorrect print ... by pmac22 Path Finder in Splunk Search 09-07-2021 0 2	0	2
stream rex substitution to stats I have the following rex substitution in a query to aggregate various log messages (with the string Liveness and Read... by ddebroy Engager in Splunk Search 09-07-2021 0 1	0	1
Joining two files with derived field Greetings,I am very new to Splunk and I am sure my question may have been asked multiple times. I went through multi... by tva000 Observer in Splunk Search 09-07-2021 0 1	0	1
Field Extraction from SQL Coded Events Hello,I have some issues to extract fields from this SQL coded events. Is there any way we can perform field extracti... by SplunkDash Motivator in Splunk Search 09-07-2021 0 20	0	20
Icons Disappear From A Table While Word Wrap Is Disabled I have a table where the first four columns includes an icon. I want to have word wrap disabled. When I disable wor... by rkeq0515 Path Finder in Splunk Search 09-07-2021 0 0	0	0
Combine the results of a table in one single row I have a splunk query that results in a table , while creating alert it just sends the first row of the results ,so w... by nandhiniG Explorer in Splunk Search 09-07-2021 0 2	0	2
Map search Hi,I am using below query to search all correlation ID based on a search string and get the SOAPResponse using map se... by BhuvanM New Member in Splunk Search 09-07-2021 0 1	0	1
Create fields from the lookup content Hi,In order to parametrize the search, I created a lookup with a couple of numerical values that I would like to easi... by corti77 Contributor in Splunk Search 09-07-2021 0 3	0	3
Parse the log and get average time. Response time for User Identifier for fsreqid: " + fsreqid + SIDKEY + sid + " is "+responseTimePlease help us out her... by fidankur New Member in Splunk Search 09-07-2021 0 1	0	1
How do I get subquery results Hi all, I have two indexes, and I want to check whether the data from one index=a exists in the other index=b, an... by bella Loves-to-Learn Lots in Splunk Search 09-07-2021 0 1	0	1