I have sum (field) which has been piped into stats sum of another field, Not sure what is happening here. Kindly help me understand.
sum(field) {| stats sum(sc_bytes) as Bandwidth by s_host}
Hello Splunkers.
I've downloaded the Splunk MachineLearning Toolkit.
In Detect Numeric Outliers Showcase, I can successfully create a search, detect the outliers and see the "Data and o...
Hello, I'm just having a bit of difficulty differentiating between Splunk Enterprise, ITSI, SOAR, UBA, and Enterprise Security. It seems like they all do similar things. Do they all...
Hi I want to inventory all Splunk tools related to artificial intelligence and observability Here is the list: Splunk AI Assistant - PREVIEW (formerly SPL Copilot) Splunk MachineLearning T...
hello
I want to understand the concept of how Splunk security works.
I think that it has a database of signatures of threat and when we enter the logs, it does the pattern matching. Is that right?
...bnormal peaks
But I think there are more efficient methods, such as machinelearning? Can someone help me and share a use case with me, thank you
Note: I have a lot of API interfaces, about 20, I w...
My organization is struggling to successfully incorporate data science into existing security processes successfully. I'm having a hard time finding resources that help me assess the maturity level o...