Splunk Search

Community Activity

Make a stats by value a separate field I've performed a stats by command I was wondering if there was a way to store all these as fields and then for the by... by ebs Communicator in Splunk Search 05-31-2021 0 5	0	5
How to use Regex to find values between two strings I have this event: <f:Table><f:Row><f:Cell>IE Group Policy</f:Cell></f:Row><f:Row><f:Cell>HKEY_LOCAL_MACHINE\SOFTWAR... by hartfoml Motivator in Splunk Search 05-31-2021 0 4	0	4
Parsing kaspersky syslog events Hi community,I need help in parsing events containing not pure json.This is the raw event: May 28 15:00:15 sd960evo E... by martaBenedetti Path Finder in Splunk Search 05-31-2021 0 2	0	2
Time conversion Hi Team I have the time in this format "startTime":1606406489009 i wanted to convert it to date-month-year hour-secon... by Nith1 Path Finder in Splunk Search 05-31-2021 0 4	0	4
Add fonction AVG, STDEV and eval command to contingency command Hello,I have an excel file like this :And I wanna do this on splunk, but I can't / don't know how to do itMy request ... by yoan Explorer in Splunk Search 05-30-2021 0 2	0	2
Using a stats avg function after an eval case command to categorise Hi,I have a requirement where we need to categorise events based on the url into 4 separate categories, then calculat... by ebs Communicator in Splunk Search 05-30-2021 0 2	0	2
Dashboard base search with extra search values Hello,I have a dashboard with 3 panels that load at the same time.Almost 3 identical searches. The difference is i ad... by hvdtol Path Finder in Splunk Search 05-30-2021 0 8	0	8
Query syslog fields Dear all,I have a syslog-ng relay server collecting syslog messages from remote network devices and saving them as lo... by ChintanaM Explorer in Splunk Search 05-30-2021 0 6	0	6
X axis and y axis title font size change How to change the font size for x axis and y axis titles in splunk. Need inputs on this. by ManjunathN Engager in Splunk Search 05-30-2021 0 2	0	2
Transaction Command not returning all results Hi, I have a splunk query as below:index=platform env=sandbox http_method="GET" This gave me 1 result back.Now, when... by splunkuser1948 Engager in Splunk Search 05-29-2021 0 5	0	5
If a field includes certain number of predefined strings? Hi,data set to search in field1: ("foo", "bar", execute", "thanx", "tax", "trade" )if field1 includes any random 3 o... by splunkerer Path Finder in Splunk Search 05-29-2021 0 2	0	2
Use call stats to calculate concurrent calls. I have a data source that provides call records for telephone calls. Each call record contains a call duration and t... by C37996518 Explorer in Splunk Search 05-29-2021 0 4	0	4
Need to compare the contents of a lookup file with search results Hi, Brand new to splunk here. I've been using it about 1 month. I have a lookup file, all_identities_prod.csv, th... by jcaron9999a Explorer in Splunk Search 05-28-2021 0 4	0	4
How can I get max number of hours without events for all indexes, myindex=* ? I have the summary index to record hourly event count for all device (de_count). I have the following search to get m... by vl951f Path Finder in Splunk Search 05-28-2021 0 4	0	4
How can I get the search work with multiple indexes I have the search to get max number of hours without events for feeds.It works just for one index. It wouldn't work w... by vl951f Path Finder in Splunk Search 05-28-2021 0 6	0	6
Sum of field b after making multivalue fields and sort by date I have created several 'rex' expressions that parse data into their own fields and the created multivalue fields comb... by chaday00 Path Finder in Splunk Search 05-28-2021 0 1	0	1
Learning my Companies Splunk Data I am trying to better learn what data is in the indexes at my company. There is a command that gives you something ... by MScottFoley Path Finder in Splunk Search 05-28-2021 0 2	0	2
Search for non-matched values Hello, Is there any way to search non-matched values from two tables like you can do on excel using VLOOKUP? Thank... by appleman Contributor in Splunk Search 05-28-2021 2 15	2	15
count time of my select time within week-ends Hi community,is it possible to calculate the time between info_max_time and info_min_time according to the period cho... by wcastillocruz Path Finder in Splunk Search 05-28-2021 0 2	0	2
Reference Table Header in Javascript Hi - I am currently working on adding a tooltip to a column header on a table in a Splunk dashboard. I have seen ways... by mrstrozy Path Finder in Splunk Search 05-28-2021 0 1	0	1
Divide the results of a query based on a field in the log Hi,I wanted to divide each hostname by using the count of "documentcompletetime" field. index=nextgen sourcetype=ligh... by SG Path Finder in Splunk Search 05-28-2021 0 4	0	4
How to find find my reports and alert coming from which directory Hi Team, Need help in identifying how can we find the path/directory of my alers and reports.. For ex all my alerts a... by vikashperiwal Path Finder in Splunk Search 05-28-2021 0 9	0	9
'Show Source' in the search events I am searching for logs, and when I click on 'Show source' they are more logs associated with itIs there a way to... by TestQA52 Observer in Splunk Search 05-27-2021 0 3	0	3
Extract fields from nested json structure with dynamic key Hello,I have nested json type log messages like below being forwarded to splunk - { "timeStamp": "2021-03-11T... by rkothari Loves-to-Learn Everything in Splunk Search 05-27-2021 0 6	0	6
Outputlookup Removes Multivalue Fields I had an extremely expensive query that would return results in this format: I needed to speed up the query because... by david_rose Communicator in Splunk Search 05-27-2021 0 7	0	7