Splunk Search

Community Activity

JSON Fields Extraction using REX Hello, I have a requirement where i need to extract part of JSON code from splunk log and assign that field to spath ... by rczone Path Finder in Splunk Search 08-27-2021 0 4	0	4
Having a search trigger another search Is there a way to trigger another search from a search? What I have is a syslog search for traffic on a router. The... by kholleran Communicator in Splunk Search 08-27-2021 3 9	3	9
How do I export large amounts of data? I am having issues with finding a way to export two reports.I have two reports, which I'll call search1 and search2. ... by XOJ Path Finder in Splunk Search 08-26-2021 0 3	0	3
Compare inputlookup and index search Hi,I have a lookupfile that contains a list of hosts, (one column named hosts), this list maybe subject to change.I w... by Scroogemcdougal Engager in Splunk Search 08-26-2021 0 2	0	2
display 2 single tag side by side in one panel <panel><single></single><single></single></panel> in display value of single tag is in vertical order. so how the va... by 9198459056 Loves-to-Learn Everything in Splunk Search 08-26-2021 0 3	0	3
convert the row value to column Hi All,we have a query as below (index=abc OR index=def) category= * OR NOT blocked =0 AND NOT blocked =2\|rex field=i... by Susha Engager in Splunk Search 08-26-2021 0 3	0	3
How to access the last log item in array I have this log{<!-- --> [-] duration: 3005 finishTime: 2021-08-25T15:47:26.838196 logger: splunk startTime: 2021-08-... by graziaedu Explorer in Splunk Search 08-26-2021 0 2	0	2
Evaluate percentiles based on multiple rows I have the data in the following formatscore_countscore_value2350465215389054with more than a 1 million score_values,... by grizzlypolar Loves-to-Learn Lots in Splunk Search 08-26-2021 0 0	0	0
Splunk cloud - extracting JSON data Hi All, I have an JSON file that is ingested into Splunk, I need to create a dashboard with the different API's and t... by ashrafsj Path Finder in Splunk Search 08-26-2021 0 3	0	3
How can I fetch user_agent info and OS from AWS-WAF logs I tried many ways to fetch the Web Browser, Version and OS info from the below format, i was unable to could you plea... by raghu1228 New Member in Splunk Search 08-26-2021 0 1	0	1
Connectivity Search I have an issue with the connectivity between the heavy forwarder and the deployment server. What is a search that I ... by troyredskins New Member in Splunk Search 08-26-2021 0 2	0	2
Display the lowest duration for all models SerialNumberDuration111A200111A500222230033331003333250 How can I display only the lowest duration for each SerialNu... by moinyuso96 Path Finder in Splunk Search 08-26-2021 0 1	0	1
MLTK alerts and training set Hi,I have built a ML model for detecting Categorial outliers. Base search for the model is given as last 30 days[trai... by Janani_Krish Path Finder in Splunk Search 08-26-2021 0 9	0	9
Does DensityFunction use partial_fit ? Hi,I am using MLTK's DensityFunction on my datamodel fields, I want to use Partial_Fit=true.But Im getting below erro... by abhishekkalokhe Explorer in Splunk Search 08-26-2021 0 1	0	1
Event correlation between two index I want to correlate events between two indexIndex=AIndex = BThere are multiple user field(user, src_user, dsuer) unde... by sgambhir0109 Loves-to-Learn Lots in Splunk Search 08-26-2021 0 1	0	1
Combine data from 2 indexes Hi,I am trying to combine data from 2 indexen, but i find it hard to do.I tried several stats values command, but tha... by hvdtol Path Finder in Splunk Search 08-26-2021 0 3	0	3
ı want time values comes from subsearch to main search for every record ı want time values comes from subsearch to main search for every record, for example my vpn session table have a star... by burakatabay Path Finder in Splunk Search 08-26-2021 0 2	0	2
Is it possible to access _internal index of a search peer? Not sure that I've picked the correct location - moderators, please move.I found that I cannot normally run a search ... by arkadyz1 Builder in Splunk Search 08-25-2021 0 3	0	3
Basic use of tstats and a lookup Here is a basic tstats search I use to check network traffic. \| tstats summariesonly=t fillnull_value="MISSING" coun... by dmbr Explorer in Splunk Search 08-25-2021 0 3	0	3
stats,streamstats command question I'm going to check the permission and rejection of the scan attack per hour.At this point, what I wrote...Which is ap... by nnonm111 Path Finder in Splunk Search 08-25-2021 0 5	0	5
List events in csv not found in index Hi, I have finally got my search to work that compares data between index and lookup (csv) file that contains assets ... by munisb Explorer in Splunk Search 08-25-2021 0 1	0	1
Splunk running total Hey Splunk gang, I have a dashboard that I am creating and it will ingest a file every 5 minutes. I need to create a... by Anesthetize Engager in Splunk Search 08-25-2021 0 1	0	1
Removing fields vs. search performance I'm watching the Fundamentals 2 course (finally XD) and I've come across the search ending with something like: \| sor... by PickleRick SplunkTrust in Splunk Search 08-25-2021 0 3	0	3
I need to create a Dashboard that has a text component panel. Font size of the text will change based on count value Hello, I have a simple dashboard that has 2 panels:1)Types of dashboards (single value component defining count of ea... by 493600 Explorer in Splunk Search 08-25-2021 0 0	0	0
Searching for exact term I want to try a search for "9.com"However the results return 89.com,five9.com,guru99.com How to execute this. Please ... by Sandeep_J New Member in Splunk Search 08-25-2021 0 2	0	2