Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- About codeJesus
codeJesus
Engager
Member since:
10-10-2022
07-04-2025
Community Statistics
| Posts | 6 |
| Solutions | 0 |
| Karma Given | 0 |
| Karma Received | 0 |
| Member Since | 10-10-2022 |
Activity Feed
- Posted Re: Exclude a Region/Country on Splunk Enterprise Security. 11-30-2023 06:25 AM
- Posted Exclude a Region/Country on Splunk Enterprise Security. 11-22-2023 11:15 PM
- Posted How would I track devices that use SMBv1 and SMBv2? on Security. 04-28-2023 08:56 AM
- Posted How to search for the websites/urls that people visited today and for a particular user? on Getting Data In. 10-25-2022 06:14 AM
- Posted Re: Devices In Splunk- How can I create syntax, an alert, and create a table? on Splunk Search. 10-21-2022 01:14 AM
- Posted Devices In Splunk- How can I create syntax, an alert, and create a table? on Splunk Search. 10-10-2022 04:12 AM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 | |||
| 0 |
11-30-2023
06:25 AM
i added the below to get what I want. | search Country!=<country name>
... View more
11-22-2023
11:15 PM
Hello, when I run the below SPL , it gave me all the region that a user have accessed from. if I want to exclude a region or country from the list, please where do I add the SPL query and what is the SPL. I have used several exclusion query but it didn't work. please help | tstats count(Authentication.user) FROM datamodel=Authentication WHERE (index=* OR index=*) BY Authentication.action Authentication.src | rename Authentication.* AS * | iplocation src | where len(Country)>0 AND len(City)>0
... View more
Labels
- Labels:
-
investigation
04-28-2023
08:56 AM
Hello, I am new to Splunk.
Please could someone advise on how I can track devices that still uses SMBv1 and SMBv1 in our Network using Splunk.
... View more
Labels
- Labels:
-
access control
-
audit
-
encryption
-
permissions
-
SSL
-
SSO
10-25-2022
06:14 AM
i wanted to search for the websites/urls that people visited today and for a particular user.
i tried this but I didnt get any result. any suggestion please?
index"*" sourcetype="WinEventlog:security" user="*"
Also, the login and and logout times on Active directory
... View more
Labels
10-21-2022
01:14 AM
Thanks for this. does any one know the SPL to check for the windows OS types that have been ingested into Splunk? I have run several SPL queries but it didnt work
... View more
10-10-2022
04:12 AM
Hello,
please can someone assist with creating syntax to
1. know the numbers of desktop, laptops, servers and network devices that I have onboarded into Splunk cloud?
2. Create alert if a new device is onboarded?
3. Count the numbers of the different types of devices that have been onboarded
4. create a table for the above
thanks
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
07-04-2025
04:26 AM
|
