I have installed the latest splunk with Splunk enterprise security on it. I have worked with enterprise security before, and there were some filters available to filter incidents, now in this v...
I have a splunk dashboard that looks like below,
And i have added the text filter. But when i try to search of the text filter it works. But it only works when i search by one App. But i...
i can't extract the exact text using rex command . e.g User: This is my user Name\n This is just some random text i want to extract a new filed which values is "This is my us...
Hi,
I implemented an input filter, but i want to improve it. Customers want to select multiple values from the filter and then select more values. in the current situation they need to select 'A...
...alicious'. I'm trying to filter for those and write the details to a note. But the note always contains all 500 items, not just the 9. My filter block (filter_2) is this: if g...
Hi Splunkers! I would like to filter in a field when I received a specific value from multiselect input dropdown, I'm having a field "Type" where I will get multiselect v...
Need regex & Null queue help to send events in /var/log/messages.
Here is regex101:
regex101: build, test, and debug regex
(IP & hostname randomized)
props.conf [so...
Greetings. I am quite new to Splunk and read a lot of sources. However, I have a hard time to find my answer about the join and eval functions. I have a first search on an index. I want to filter...
...nfo from all the nfs'es in my apps-nfs.csv
But.... I don't want the entire list...
I want to use a filter in my apps-nfs.csv first on app-name and can't get that to work. Eventually i want to u...
...rid="<null>" reqest="POST /as/*/auth *" But then I need filter out results from the main search, using a subsearch that operates on a different data set, using a value from a field from t...