Splunk Search

Community Activity

	rex help... Greetings, Please help!! I need to extract the ID value from the two events below, and I’m kinda banging my head here... by msarkaus Path Finder in Splunk Search 10-15-2024 0 10	0	10
	How to Splunk query to split values of multiple dictionary within a list Query is to retrieve failed test case matching with exception message. Out of 6 failed test case, one test as excepti... by vinodkumarK Explorer in Splunk Search 10-15-2024 0 6	0	6
	Splunk query optimization Hello Splunker!! Could you please help me to optimize below query ? Customer saying dedup is taking so much resource ... by uagraw01 Motivator in Splunk Search 10-15-2024 0 13	0	13
	Trying to look for sessions with login and logout requests Hello,I'm just trying to learn SPL and am currently trying to find all sessions with login and logout requests, ident... by Labuser43 Engager in Splunk Search 10-14-2024 0 4	0	4
	How to find out Server Uptime & Downtime Hi All I am trying to find out Server Up time & Downtime or offline However i am using the below command which i am... by jaibalaraman Path Finder in Splunk Search 10-14-2024 0 3	0	3
	Chart with Multiple fields on Y axis and time in X axis Hello, I would like to create chart with multiple fields in Y axis and time in x axis, Y axis - FIELD_01 FIELD_02 F... by smanojkumar Contributor in Splunk Search 10-14-2024 0 2	0	2
	splunk threat intelligence taxii data Hi everyone, I have configured otx alienvault taxii source in Threat Intelligence Management, as I can see in logs so... by user487596 Explorer in Splunk Search 10-14-2024 0 0	0	0
	Top 10 for each date I have below splunk which gives result of top 10 only for a particular day and I know the reason why too. How can I t... by bmer Explorer in Splunk Search 10-14-2024 0 6	0	6
	convert eval into search using AND... Hi All, i have this calculation and at the end iam using where to get only what i need. splunk suggests that put this... by Raj_Splunk_Ing Path Finder in Splunk Search 10-11-2024 0 5	0	5
	Health Check of Servers after patching Hi , I want to ask community how you do health check of servers after patching? Is there any automation you have buil... by ravigaur06 Observer in Splunk Search 10-11-2024 0 6	0	6
	How to deal with Logon/Logoff scatterd over multiple events I have onboarded data from a system, that scatters actual events over many logging events. Especially successful or ... by jroedel Path Finder in Splunk Search 10-11-2024 0 8	0	8
	Internal index data and performance data is missing To investigate the issue of missing data in Splunk for a period of 3-4 hours, where gaps were observed in the _intern... by uagraw01 Motivator in Splunk Search 10-10-2024 0 3	0	3
	Append a lookup value from csv to a chart table I am looking to append a value in a lookup csv to an existing search index=* \|fields _time,x \|chart count(_raw) by X ... by Topher22 Observer in Splunk Search 10-10-2024 0 2	0	2
	please excuse... as it is very basic... AND in search or WHERE..what is diff Hi All, Thanks for your time. I am sorry in advance as this is very basic question. just started exploring the search... by Raj_Splunk_Ing Path Finder in Splunk Search 10-10-2024 0 6	0	6
	How do you get a Saved Search to ignore a specific automatic lookup? How do you get a Saved Search to ignore a specific automatic lookup?The reason for wanting to do this is because the ... by jaburke1 Path Finder in Splunk Search 10-10-2024 0 3	0	3
	URLs by host I need a query that lists URLs a particular host has reached out in a particular time e.g in the last 24 hours. Pleas... by waJesu Path Finder in Splunk Search 10-10-2024 0 3	0	3
	Printer Log search to list all printers from lookup and give record count and page printed count Looking for help running a stats count and stats count sum referencing a lookup using print logs. Looking to output ... by ramuzzini Path Finder in Splunk Search 10-10-2024 0 3	0	3
	Getting a .json file into Splunk at the backend Am having trouble getting a .json file into splunk through the backend to help support a customized dashboard. Is the... by whitecat001 Explorer in Splunk Search 10-10-2024 0 1	0	1
	percent of results per bin Hi all, New to splunk, running out of ideas, please help! I have created a search to show: \| bin span=10m _time \| st... by tp29 Engager in Splunk Search 10-10-2024 0 2	0	2
	Finding a way to include creator name and creation date in Indexes Hi, I'm exploring a way to get the search results for the name of Indexes, who created those indexes and creation dat... by shoaibalimir Path Finder in Splunk Search 10-09-2024 0 2	0	2
	To count the filed with different time range Hi I have events that having multiple countries... I want to count the country field and with different time range. I... by parthiban Path Finder in Splunk Search 10-09-2024 0 5	0	5
	How to use search results in a table in a new search also using row count? I'm still learning Splunk and would like to learn how to combine some searches.Goal: Use the VPN search results to pe... by dt9150813 Engager in Splunk Search 10-09-2024 0 2	0	2
	How to combain two rex I have two rex queries and want know how to combine Query : 1 index=test1 sourcetype=teams \| search "osversion=" \| re... by VRP136 Engager in Splunk Search 10-09-2024 0 1	0	1
	Run macro commands from lookup HiI'm wondering if it's possible to define and execute a macro from a lookup. I have an index with several (about 50... by apiprek2 Explorer in Splunk Search 10-09-2024 0 2	0	2
	To compare the value of particular day with the same day of the last week and last to last week. Hi Can someone please tell me how we can compare the value of a particular day with the value of the same day of last... by Real_captain Path Finder in Splunk Search 10-09-2024 0 9	0	9