I am trying tosendevents from my host machine tosplunk using HEC. My Function: Invoke-RestMethod -Method Post -Uri $hecUri -Headers @{"Authorization" = "Splunk $hecToken"} -Body $j...
...mail, the email is not being sent, because the server specified in general mailserver setting is not taken by Enterprise Security Notable Events. Do I need to configure some extra settings for Splunk...
Hello Folks, I have data in JSON format (data.json). I want to visualize the data by creating a dashboard in SplunkEnterprise. Due to my company structure, I can only use the HTTP event c...
...answers about handling JSON arrays in SplunkEnterprise. The most useful answers mentioned using spath and mvexpand to expand nested JSON arrays. However, does this mean that by sending events in t...
I tried to set up an alert Script in Pearl sending SNMP traps to other host like here. I Changed the Host:Port to my values, but when i try to run this script i got this error:
No log h...
Splunk Cloud Version:7.2.10.2 Splunk CyberArk Vault Action Codes question Thank you for helping me! - Example sample queries. I am looking to query our Splunk cloud for the vault action codes e...
I am using SplunkEnterprise and wish to automatically forward eventsto Phantom. I am able tosendeventsto Phantom with a saved search using the Phantom add-on. However, tosendeventsto P...