https://github.com/alpha74/splunk_guide
Guide for using Splunk for Searching and Reporting
https://github.com/alpha74/splunk_guide
Last synced: 10 months ago
JSON representation
Guide for using Splunk for Searching and Reporting
- Host: GitHub
- URL: https://github.com/alpha74/splunk_guide
- Owner: alpha74
- Created: 2021-08-14T11:44:24.000Z (over 4 years ago)
- Default Branch: main
- Last Pushed: 2021-09-18T08:34:28.000Z (over 4 years ago)
- Last Synced: 2025-01-16T04:41:20.402Z (12 months ago)
- Size: 24.4 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Splunk Guide
### Guide for using Splunk for Searching and Reporting
## Splunk Search
- Based on `SPL` : Search Processing Language.
- It is the primary way users interact with data in Splunk.
- Can be used to: Query, Calculate, Transform, Organize, Visualize and Manipulate data.
- Done by using `Search and Reporting` app of Splunk
### SPL
- Search Processing Language
- SPL encompasses all the search commands and their functions, arguments and clauses.
- Its syntax was originally based on Unix pipeline and SQL.
- The scope of SPL includes data searching, filtering, modification, manipulation, insertion and deletion.
-----
### Search and Reporting App
- Comes built-in in Splunk.
- Primary way to search and analyze data in Splunk.
- Index data
- Build reports and visualizations.
- Configure alerts
- Create dashboards
-----
### Contents : Search and Reporting
- [Time and Time Variables](https://github.com/alpha74/Splunk_Guide/blob/main/Searching_and_Reporting/1_time_and_time_vars.md)
- [Basic Searching](https://github.com/alpha74/Splunk_Guide/blob/main/Searching_and_Reporting/2_basic_searching.md)
- [Fields and Fields Extraction](https://github.com/alpha74/Splunk_Guide/blob/main/Searching_and_Reporting/3_fields_and_extraction.md)
- [Creating Tables and Visualization using Pivots](https://github.com/alpha74/Splunk_Guide/blob/main/Searching_and_Reporting/4_creating_tables_ui.md)