Hi guys, I started today with Splunk and have one question. I want to use an or function that if the second "or" the third row is active I got the trigger. Any ideas how t...
Hello community,
like to ask for support to get over conditional formatting. I have 3 different products in a group. Product A, B and C and I need to add for each of them a different formula (compe...
Hello,
I'm new to Splunk and I'm having trouble with the following line of code. I think what I'm trying to do is pretty self-explanatory. Essentially the data I'm working with is one column and t...
Fairly new to writing playbooks within Phantom and so far havent found documentation for this yet: I'm trying to create an email notification (or something along those lines) whenever a playbook fai...
I was building a new search and started getting this error with various functions. I simplified my search down to something straight out of the documentation to make sure I wasn't missing something s...
I have tried to use the following eval to pretty up the return of a field but the result is always test. I have tried single and double quotes around the host.domain field but it always just gi...
...xcellent Custom Function that looks in the cached SOAR internals for the cached results from previous executions of a specific app/action.
He did mention that this was a 'work in progress' and I can't f...
Hi,
Just curios if this is possible as I have interesting challenge.
So, I have extracted fields, key=value
id0=0000, id1=1111, id2=2222,inN=NNNN,zone0=zone0,zone1=zone1,zone2=zone2,zoneN=zoneN...