Hello All, I am trying to plot the count of events per day over a span of a week by using scatterplot matrix as the visualization to see if there is any linear relation observed. And I need to p...
Here is my search in question, the common field is the SessionID
index=eis_lb apm_eis_rdp
|fillnull value="-"
|search UserID!="-"
| rex field=_raw "\/Common\/apm_eis_rdp:ent-eis[:a-zA-Z0-9_.-](?'Se...
...ere is an example of the matrix that I would like to import. (Q3: What would be SPL command provided the field name for the x, y that is true) a b c d e f 1 0 1 0...
Hi I have to create correlation searches in Splunk ES My cron schedule will be */60**** Is it better to use a real-time schedule or a continuous schedule? Is it necessary to fill the time r...
Hello,
I would like to request guidance on how to create a correlation search based on data provided by SANS Threat Intelligence from https://isc.sans.edu/block.txt
The malicious IPs f...
Hi,
I am currently working with a table that looks like this:
col1 | col2 | value
xA | yA | 1.0
xA | yB | 1.5
xB | yA | 2.0
xB | yB | 2.5
From this table, I would like to create a matrix...
...tep will be to split the strings "Mon 14-16" into Mon and time but I am getting lost as to how to make the, follow my desired matrix arrange. Thank you so much to everyone who can help me out. K...
A question,
When we talk about correlation, is it necessarily because a query is being made in 2 or more sources?
Or is it also considered correlation when certain criteria are searched in a s...