Skip to content

Instantly share code, notes, and snippets.

@tuxfight3r

tuxfight3r/splunk_tricks.md

Created April 30, 2019 10:00
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save tuxfight3r/5f6b0c2d096fc963bfbdfbd72e4fded6 to your computer and use it in GitHub Desktop.
Save tuxfight3r/5f6b0c2d096fc963bfbdfbd72e4fded6 to your computer and use it in GitHub Desktop.
Download ZIP
splunk query tricks
Raw
splunk_tricks.md

splunk notes


index=* | stats count user
index=* | stats count by user method version
index=* user="adm*"|stats count by user method version
index=* NOT user="-"|stats count by user method version
index=* NOT user="-" method=get|stats count by user method version

index=* user="*"| timechart count by user
index=* method=* NOT method=get |timechart copunt by method
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment