Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
10,000 results
Sorted by:
08-10-2021
11:12 AM
Hi All, Please help me to solve this. desc="Trigger App : Search [Abc_[qwert] asd] number" I want to fetch the "[Abc_[qwert] asd]" from the above string Thanks
Labels
- Labels:
-
search head
07-09-2021
02:46 AM
Hi guys, im noob in regular expressions!! 2021-07-05 23:22:12.807 +01:00 [WRN] XXXXX.Membership.Renew Long Running Request: IntegratePaymentCommand (1082 milliseconds) Jobs {"BatchSize":10,"MaxRet...
Labels
- Labels:
-
field extraction
-
regex
-
rex
03-02-2021
03:43 PM
Hello All, I am not so familiar with regex, but looking at some old query have been able to build one for my need. I am looking for help to understand how this is working in terms of r...
Labels
- Labels:
-
using Splunk Enterprise
Show results in replies (4)
-
To know whether a regex works or not requires knowing the text it is trying to match. P...
-
...haracters needed to match the regex.
-
...atching text will fill. 2. The regex wildcard character is . (full stop). The a...
-
...ere on" - I am assuming this regex and nothing to do with Splunk itself. So I tried to use this c...
04-01-2022
03:19 AM
I have messages like below in logs, I want to extract ErrorCode from Those messages, Here ErrorCode is CIS-46031
However there could be space right after ErrorCode or after&nb...
Labels
- Labels:
-
configuration
04-29-2022
04:39 AM
Regex for From: FA.south dam.australia-mb.ccjbh need to get only: ccjbh
Labels
- Labels:
-
Other
05-31-2022
11:59 PM
Hi All, I'm trying to find the credit card details in the logs with all in one regex expression. But I was also getting some other data too like timestamp data as it has more than 12digits and some r...
Labels
Show results in replies (5)
-
https://regex101.com/r/eqLFaV/1 | rex "card>.*?\D?(?<card>\d{16})\<card"
-
With regex, it helps to identify some sort of anchor pattern e.g. "card=xxxx". If you don't have t...
-
Hi @ITWhisperer , actually we are having many anchor patterns to recognise the card details. E...
-
Regex works with patterns - if you can define what you mean by generic as a pattern, then you m...
-
Yeah we can do in that way but in anchor tag we can't expect only card details. We have some other ...
yesterday
Can someone help me pull out these data points: cw.pptx;text.html;text.txt I need it to split at the ; mark but have them in their own fields so I can only see the .txt in my search.
2 weeks ago
Hi Team - Need your expertise in Regex.
The below is the rawlog i need to extract the Date and time the only unique is the WORD "START" & "END" goal is to find the response time b...
- Tags:
- Regex help
Labels
- Labels:
-
regex
Show results in replies (7)
-
HI @kc_prane, if the shared sample is in one event, you could use the following regex: | r...
-
Hi @kc_prane, good for you, see next time! Ciao and happy splunking Giuseppe P.S.: Karma P...
-
Thanks Gcusello ! i modifed your solutiion it worked. | rex "START.*messageDetails\>(?<Star...
-
Hi Marysan - Thanks for the reply, i got the solution | rex "START.*messageDetails\>\d+...
-
Hi @gcucello Can you also help me how to seperate the date and time in the regex. Cause i wanted t...
-
Hi @gcucello - No worries I got the solution, thanks a lot | rex "START.*messageDetails\>...
-
@kc_prane Hi Would you give me an example of your expected result ? how do you calculate r...
01-01-2022
02:00 PM
Hello, I'm attempting to use the regex command to filter out any records on the "user" field that do not match the written expression below: index=myindex sourcetype=traceability_log4net e...
Labels
- Labels:
-
regex
05-20-2022
10:43 AM
Hey,
i want a regex result from
10.66.189.62 -- -- -[17/May/2022:05:59:16--0400]--502- "POST /astra/sliceHTTP/1.1" req_len=1776-req_cont_len=117-req_cont_enc="-"-res_body_len=341 res_len=733 "h...
