Hi Everyone,
I am usingSplunk enterprise MSI file in my own windows laptop. So for practice i would like to install Splunk in Linux environment in same machine.
As we know we can use putty or t...
I am trying to use a Universal Forwarder to get a load of windows event logs that I need to analyse into Splunk. The event logs are from about 7 different systems and are all located on my local l...
...above should display Windows
All the Linux above, should display Linuxand so on in an additional column like below:
How? I tried to use eval and case but seems like not getting i...
Hi folks,
When at customers I like to use the SPL Services TAs for WindowsandLinux instead of using the TAs found onSplunkbase, as the SPL Services applications offer more granularity in the i...
It's a bit off-topic but I have a kinda unusual use case. I want to get the events out of windows box and store it on a linux machine (in this particular case it's windows VM and I want to export t...
As per https://splunkbase.splunk.com/app/507/, pingstatus is only supported onSplunk Versions: 6.2, 6.1, 6.0, 5.0.
can I use it onsplunk version 7.x.x ?
Else is there any other command to p...
...ifferent and at one point it can display the metrics from one host only. Can anyone tell me how to achieve this in one PANEL ? Windows Host SPL | mstats min("Processor.%_Idle_Time") as val WHERE (`i...
...Windows Attack Surface Reduction events
You can watch the Tech Talk on-demand here. For all our toolsand security content, please visit research.splunk.com.
— The Splunk Threat Research Team
...radio button that automatically updates to 'linux' or 'windows' if I change the hostname back-and-forth. But I have to click on the radio button in order to "set" the 2nd token.
.
Details
I h...
Hi all,
I was wondering if anyone has had experience of collecting remote data for Splunk from a Windows device, where a forwarder can not be installed on the machine (due to support issues), and...