Splunk Search

Discussions

Thread Info

is there a way to display each row in a table as a tile..?

I want to show each row as a tile with different customization. 1. Based on the row value i should change the color o...

by Path Finder in

lookup users that do not match users in search

I have created a search to match search results for users to users in a lookup: | inputlookup AD_User_LDAP_list ap...

by Communicator in

Using tokens in XLM dashboard table "fields" tag- fields won't update dynamically

I have an XML form that has a select box control that allows users to select the fields they want displayed in the ou...

by Path Finder in

Field extraction of multi-line event with header

I have a script for Linux that executes "sar -n DEV" and formats the output to look like: Linux <kernel version> (...

by Communicator in

How to trim splunk logs to get time and particular field

Below are the sample entries from splunk. Highlighted the entries which i want to list down. Please suggest a splunk...

by New Member in

Icelandic unicode character - "Interesting fields" showing no result

Hi, I'm writing json NLog files from Visual Studio into Splunk (with NLog WebService target). In my Splunk sear...

by Engager in

How to extract Json array of objects data into table format in Splunk ?

Example data : We need to extract below json data into table format in Splunk ?link text "assets": [ { "id": 1, ...

by Motivator in

Splunk Cloud rex extraction on search

Attempt A index="w3c" | rex field=_raw "?(sessionid=?)\w{8}-\w{4}-\w{4}-\w{4}-\w{12}" | table ABC _raw Attempt B in...

by New Member in

How to pull events on status events based on time stamps

When someone gets activated and deactivated this data is consolidated -- always. My question is how can I separat...

by New Member in

List of top URLs with hourly count > 50

Hi, I have a ask where I need to find out top 100 URL's who have hourly hits more than 50 on the server means if a pa...

by Explorer in

Chart - select multiple values for drilldown

Hi, I am looking forward to create a bubble chart like this: https://www.highcharts.com/demo/bubble, where I can c...

by Path Finder in

Sub search not returning string

Why does a sub search return a boolean value? I am expecting to see the department value. index="activedirectory" ...

by Path Finder in

Get all data even host name is getting changed while searching

Hi I am monitoring log file from one folder and giving host field name as hostname. ex. I am monitoring C:\Logs\GTA(...

by Builder in

timestamp issue

Hi I have issue with timestamp, here is the problem: every day at "1 AM" all log files copy into the logserver. this ...

by Motivator in

Get Updates on the Splunk Community!

Splunk Search

Discussions

Recommended No of Concurrent searches for the current infrastructure

is there a way to display each row in a table as a tile..?

lookup users that do not match users in search

Using tokens in XLM dashboard table "fields" tag- fields won't update dynamically

Field extraction of multi-line event with header

How to trim splunk logs to get time and particular field

Icelandic unicode character - "Interesting fields" showing no result

How to extract Json array of objects data into table format in Splunk ?

Splunk Cloud rex extraction on search

How to pull events on status events based on time stamps

List of top URLs with hourly count > 50

Chart - select multiple values for drilldown

Sub search not returning string

Get all data even host name is getting changed while searching

timestamp issue

Enterprise Security Content Update (ESCU) | New Releases

Announcing the 1st Round Champion’s Tribute Winners of the Great Resilience Quest

We’ve Got Education Validation!

BotS member needed !

To set up alert using saved search and map command

How to compare 2 lookups and highlight any changes...

How to change pie chart font color from within Spl...

Users with the same roles, in the same app, and sa...