Hello,
Fresh out of college with a Cyber Security degree, I'm relatively new to the field. We recently purchased a Splunk> license and got a good amount of data going into the Splunk> serve...
...ulnerability as referenced in the 1.0.2zf advisory. identified in CVE-2022-1292, the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in OpenSSL 1.1.1p...
I'm creating correlation searches from scratch in the latest version of ES. The search results include fields that don't show up in the notable event (in the incident review dashboard). I'd like th...
Hello together
For my doctrinal statements, i have to configure a Splunk, with 50 server from our Company.
one of the objectives is to analyze the ten most critical Events. But we don’t have a ...
I am having a VERY strange problem with my summary indexing. I have the following search running every hour at 20 minutes past the however, doing a summary of -1h@h to @h
index="app_silayer7" "*...
New to splunk - Using version 4.2.3, build 105575
I need to figure out how to subtract the time between two events so as to get a duration. My current search looks like this -
id_numer | sear...