Submit Your Queries
Help us grow by joining in. Submit your own Splunk search queries and let us know which queries work and which ones don't by voting.
Newest Queries
- Current vulnerabilities from tenable.io January 31, 2023
- Correlation Search Audit Search September 22, 2022
- NIX Debian Package (dpkg.log) Dashboard September 2, 2022
- Dashboard to measure Indexes and Sourcetypes, based upon first and last date of events August 22, 2022
- Query to see incidents logged by correlation search in ES incident review dashboard August 22, 2022
- REST Call for a list of Alert actions (Webhook_sms or Email or notable or ..) August 2, 2022
- Reflected DDoS Attack August 2, 2022
- REST Call for a get details about Alert cron_schedules August 2, 2022
Most Popular Queries
- List of Indexes by ItsJohnLocke | posted on June 8, 2015 | under Uncategorized
- License Usage by Index per Day by SplunkNinja | posted on August 25, 2015 | under _internal
- List all fields for an index by Azeemering | posted on July 17, 2018 | under Fun Stuff & Helpful Hints
- List the size of lookup files with an SPL search. by Azeemering | posted on November 12, 2021 | under REST
- Sysmon – Find Processes with Renamed Executables by jwalzer | posted on July 1, 2017 | under Uncategorized
- List of Universal Forwarders with Version by SplunkNinja | posted on July 24, 2015 | under _internal
Follow us on Twitter
Download Our Official App
Operate in an environment without constant web access? This app hopes to lessen the burden of manually copying queries from our website. Install the app and have our SPL at your fingertips to use within your environment!
Download it on Splunkbase.
Recent Comments