I do a local splunk-appinspect on packages before uploading them to Splunk Cloud. Each jenkins run will 'pip install splunk-appinspect'. If the same agent has been installed, it will of course not...
...earch_command arg=0
At this point, Splunk tells me that the enum34, ipaddress, chainmap, cryptography (_constant_time module buried in here somewhere doesn't exist where it should) modules don't e...
Evaluating Symantec EndPoint Protection Cloud product which has a technote for getting events into Splunk Enterprise running on a Windows Server.
Created a scripted input per the Symantec Technote ...
I want to extract package line as individual results, tried rex "Linux\ssystem\s\:\s+(?<packages>.+)", but that is just extracting the first package line. tried rex "Linux\ssystem\s\:\s...