Hi All,
Can we translate our plain English queries to Search Processing Language i.e. SPL, does Splunk provide any free app or model apart from Security Insights Cyber Security investigator w...
Hi, How do I extract word "Dev" from below file location source=/test1/folder1/scripts/monitor/log/env/dev/Error.log and add some if condition statements like if word=dev,change it to development ...
Hello Team, I got a weird issue, that I struggle to troubleshoot. A month ago, I realized that my WinEventLog logs were consuming too much of my licenses, so I decided to index them in the XmlWinEv...
Evenid monitoring--> Need to get all the event Id details to splunk used below stanza is and is not getting data n Please help
[WinEventLog://Setup] checkpointInterval = 5 c...
Hi All, I am using case statement to map values instead of other values. But i am not getting the values.I am getting UNknown values. BucketFolder values is like: inbound/concur |rename ...
Hi there,
Before installing the Windows TA addon to a server , Windows Event Logs were shown in a different format, they are now shown in XML. I want to see searches in the original format.
I hav...
Hi Team,
I need to extract the values of the fields where it has multiple values. So, I used commands like mvzip, mvexpand, mvindex and eval. However the output of my spl query is not m...
Hi All, Below query to get stats sum of field values of latest correlationId. need to show in pie chart. But i am getting values as other.PFA screenshot index="mulesoft" *Upcoming Executio...
I would like to purchase Splunk for my personal use, at home, and not in any way associated with my employer. I am not a student, academic or otherwise associated with a university. I do not want a...