×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
DanAlexander1
Engager
Member since: ‎07-12-2022
‎10-19-2023
Community Statistics
Posts 3
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎07-12-2022
View All

How to use MLTK to tune DNS Query Length Outliers ...

by in Splunk Search
‎01-19-2023 09:06 AM
‎01-19-2023 09:06 AM
Hi All, I am trying to tune up a notable called DNS Query Length Outliers Using the MLTK App to set up the data, but the number of the notables remain the same. Am I doing something wrong? I followed some instructions on how to build the data model required for the notable to work, but still no luck. Worth mention that when I run the SPL in the Search, it delivers different number of notables. What  option shall I use from the "Experiments" within the MLTK App to make the data work for the notable. The code is from here: https://github.com/splunk/security_content/blob/develop/detections/experimental/network/dns_query_length_outliers___mltk.yml   Thank you in advance. ... View more

Re: Is there a search that will return all changes...

by in Reporting
‎01-19-2023 07:55 AM
‎01-19-2023 07:55 AM
Thank you for helping me out. Much appreciated! ... View more

Is there a search that will return all changes cre...

by in Reporting
‎07-12-2022 08:34 AM
‎07-12-2022 08:34 AM
Hi to All, I need help with creating an Active Directory changes report.  I used Win Events like 4728, 4729, 4730 but could not print to PDF  Is there a search that will return all changes creation, deletion of global groups?  Thank you! ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎10-19-2023 09:14 AM
Karma given to
View All