Submit Your Queries
Help us grow by joining in. Submit your own Splunk search queries and let us know which queries work and which ones don't by voting.
Newest Queries
- REST Call for a list of Alert actions (Webhook_sms or Email or notable or ..) August 2, 2022
- Reflected DDoS Attack August 2, 2022
- REST Call for a get details about Alert cron_schedules August 2, 2022
- Linux Deletion of SSL Certificate (mitre : T1485 , T1070.004 , T1070) June 17, 2022
- port scan attack (by juniper) June 17, 2022
- DLL Serach Oreder Hijacking (mitre : T1574.001) June 17, 2022
- Find where actual hostnames don’t match the host from the Universal Forwarder June 17, 2022
- 1st time connection between servers (FTD CISCO) June 17, 2022
Most Popular Queries
- List of Indexes by ItsJohnLocke | posted on June 8, 2015 | under Uncategorized
- License Usage by Index per Day by SplunkNinja | posted on August 25, 2015 | under _internal
- List all fields for an index by Azeemering | posted on July 17, 2018 | under Fun Stuff & Helpful Hints
- List of Universal Forwarders with Version by SplunkNinja | posted on July 24, 2015 | under _internal
- List of Login Attempts to Splunk by CattyWampus | posted on November 10, 2014 | under audittrail
- Search for duplicate events in Splunk by Azeemering | posted on May 15, 2018 | under Hygiene
Follow us on Twitter
Download Our Official App
Operate in an environment without constant web access? This app hopes to lessen the burden of manually copying queries from our website. Install the app and have our SPL at your fingertips to use within your environment!
Download it on Splunkbase.
Recent Comments