Splunk Search

Community Activity

How to add zeros to table when data is not found Hello, Have a question for the community: I have a table that looks like this: ADate Type 2019-12... by komalg New Member in Splunk Search 12-30-2019 0 2	0	2
How to write a search with the condition "if field1 NOT LIKE field2"? Hello, I am aware of the following search syntax field1 = something field1 = field2 field1 != field2 But I wis... by karthikmalla Explorer in Splunk Search 12-30-2019 0 8	0	8
expect value Hi I have log file like this: 09:04:04.042 module1: F[6]L: IN 09:04:01.417 module1: F[6]L: OUT 09:04:01.418 module... by indeed_2000 Motivator in Splunk Search 12-30-2019 0 7	0	7
Which fields correspond these metrics, count and percent? I have two fields on the event list. I have used Top command for that, I have got two fields and count and percent. ... by palisetty Communicator in Splunk Search 12-30-2019 0 1	0	1
How to co-relate data from multiple sourcetypes? I have data in three source types to co-relate. Time and a unique identifier number are common for all three sourcety... by ahmadshakir1952 Explorer in Splunk Search 12-29-2019 0 1	0	1
Index appearing in Interesting fields Why is that Index field doesn't appear in Selected Fields? It is appearing in interesting fields. index="homework_hos... by palisetty Communicator in Splunk Search 12-29-2019 0 3	0	3
Metasearch and Rawdata is required... Hi, I' cant end my search using metasearch when I need to find in index something with space betwen like "Microsoft ... by kryzew Explorer in Splunk Search 12-29-2019 0 5	0	5
calculate delta of success rate of a particular field for two hosts can you please help me in writing SPL query for the below scenario. I want to calculate delta of success rate of a pa... by yamini_37 Path Finder in Splunk Search 12-29-2019 0 6	0	6
Display data How would I display the following data which is part of CSV file? I am looking for a command to do that. top is not w... by palisetty Communicator in Splunk Search 12-28-2019 0 7	0	7
Swap memory is not getting cleared ? HI Splunkers, I see that swap being used and swap memory not getting released even though RAM is free.can you please... by shivanandbm Explorer in Splunk Search 12-27-2019 0 0	0	0
How to parse Powershell event logs? I am trying to read the DETAILS: section of the Powershell logs in Splunk to produce reports and split out each line:... by HackerHurricane Engager in Splunk Search 12-27-2019 0 3	0	3
How to show comparison graph of jenkins pipelines steps between two builds Hi Team, I want to show comparison graph of jenkins pipeline steps between two jenkins build. How can i get it? i am... by khandelwaly Explorer in Splunk Search 12-27-2019 0 1	0	1
\| Stats wont show output when search only generates one of two values Im attempting to show when a file was received and when it was sent out. The code below generates the table below tha... by mcg_connor Path Finder in Splunk Search 12-27-2019 0 6	0	6
How configure an alert to send an email based on field values? Hi All I have a requirement to trigger an alert email per Service in case of failures. I don't want to create separa... by vinuece2007 Engager in Splunk Search 12-27-2019 2 2	2	2
SEDCMD regular expression question Okay you regexperts, I need some help. I have a .csv file for which I need to mask the credit card numbers. Here is w... by adamfrisbee Explorer in Splunk Search 12-27-2019 0 10	0	10
How to get HP QC defects into Splunk How to get HP QC defects into Splunk. Does anyone have any sample python script or pls let me know if there are any o... by praveenjayaseel New Member in Splunk Search 12-27-2019 0 0	0	0
How to invert lines and columns Hello, Sorry for the language, I'm French.  I'm executing this request with this lookup file: index=xxxxxxxxxx u_... by gduc Observer in Splunk Search 12-27-2019 0 5	0	5
Field extractions Hi there. I've managed to work out some regex to grab the data I want when using regex101 but I'm having trouble por... by pdjhh Communicator in Splunk Search 12-27-2019 0 13	0	13
countfield question What is the role of countfield please? What is it doing here? index="access_log" source="access.log" host="AccessLog"... by palisetty Communicator in Splunk Search 12-27-2019 0 1	0	1
Need help in parsing events {<!-- -->{Tag not found: #Friday, November 22, 2019 1:47:00 PM: #XXXXSQL2001: #Medium: #Disk E: has an average queue length o... by ansif Motivator in Splunk Search 12-27-2019 0 2	0	2
２つのレコードで同一カラムの差分がとりたいご教授ください _Timeで並んだデータがあるのですが、この中の特定のカラムの出したいのですが方法はありますでしょうか？やりたいことの例：日付, ID, 数, 登録日 2019/1/1 0:0:0 , ABC, 10, 20... by tonakano Engager in Splunk Search 12-26-2019 0 2	0	2
How do I search splunk for a specific IP address to see of it is reaching our Palo Alto and ASA devices? All I wanted was to see if the Palo Alto or the ASA’s were able to see any traffic from a specific IP address. Most o... by virggray New Member in Splunk Search 12-26-2019 0 1	0	1
I need to do a search between two Index and extract a value in a new column Hi everyone, I need to do a search similar to an Excel vlookup. I have two Indexes, IndexA and IndexB. The IndexA ha... by flck Path Finder in Splunk Search 12-26-2019 0 6	0	6
PCRE Regex not working in Splunk Required API call, RegEx i tried in https://regex101.com/ and the Regex which works in Splunk are given below. /Cont... by eprince New Member in Splunk Search 12-26-2019 0 8	0	8
splunk java sdk returns result fields in different order than requested. I am using java sdk to query splunk, but i am not getting the result in the order requested. My search query looks li... by spadhi Engager in Splunk Search 12-26-2019 1 4	1	4