Submit Your Queries
Help us grow by joining in. Submit your own Splunk search queries and let us know which queries work and which ones don't by voting.
Newest Queries
- Correlation Search Audit Search September 22, 2022
- NIX Debian Package (dpkg.log) Dashboard September 2, 2022
- Dashboard to measure Indexes and Sourcetypes, based upon first and last date of events August 22, 2022
- Query to see incidents logged by correlation search in ES incident review dashboard August 22, 2022
- REST Call for a list of Alert actions (Webhook_sms or Email or notable or ..) August 2, 2022
- Reflected DDoS Attack August 2, 2022
- REST Call for a get details about Alert cron_schedules August 2, 2022
- Linux Deletion of SSL Certificate (mitre : T1485 , T1070.004 , T1070) June 17, 2022
Most Popular Queries
- List of Indexes by ItsJohnLocke | posted on June 8, 2015 | under Uncategorized
- License Usage by Index per Day by SplunkNinja | posted on August 25, 2015 | under _internal
- List all fields for an index by Azeemering | posted on July 17, 2018 | under Fun Stuff & Helpful Hints
- List of Login Attempts to Splunk by CattyWampus | posted on November 10, 2014 | under audittrail
- List of Universal Forwarders with Version by SplunkNinja | posted on July 24, 2015 | under _internal
- Search for duplicate events in Splunk by Azeemering | posted on May 15, 2018 | under Hygiene
Follow us on Twitter
Download Our Official App
Operate in an environment without constant web access? This app hopes to lessen the burden of manually copying queries from our website. Install the app and have our SPL at your fingertips to use within your environment!
Download it on Splunkbase.
Recent Comments