Submit Your Queries
Help us grow by joining in. Submit your own queries and let us know which queries work and which ones don't by voting.
Newest Queries
- Successful Logons – Windows December 17, 2018
- Failed Logon Attempts – Windows December 17, 2018
- Show Searches with Details (Who | When | What) December 4, 2018
- Forwarder TCP Connections info December 1, 2018
- List All Splunk Users & Associated Roles November 29, 2018
- Splunk Admin Account Activity – Role Modifications November 29, 2018
- Splunk Admin Account Activity – Account Modifications November 29, 2018
- Index Modifications November 29, 2018
Most Popular Queries
- License Usage by Index per Day by SplunkNinja | posted on August 25, 2015 | under _internal
- List All Hosts Associated with All Indexes by SplunkNinja | posted on December 22, 2016 | under _internal
- Detect Username Guessing Brute Force Attacks by DaveyBoy | posted on April 26, 2018 | under Monitoring, WinEventLog:Security
- User Logon, Logoff, and Duration by kme723 | posted on October 25, 2018 | under WinEventLog:Security
- Pass the Hash Detection by srilankanmonkey | posted on August 12, 2016 | under WinEventLog:Security
- User Logon / Session Duration by SplunkNinja | posted on November 7, 2014 | under WinEventLog:Security
