Fun (or Less Agony) with Splunk Tstats Getting to Know Tstats Most of us have heard about how fast Splunk’s tstats command can produce fast searches, but there’s not much in the training materials to help us learn how to use it. SPL is already hard enough, so just...
Splunk CIM Performance Hacks CIM Data Model Optimizations The Splunk community has rallied around the concept of data models, and why not? Normalizing data into common field sets helps to build use cases regardless of what vendor your data comes from. Common...
Introducing the HTTP Event Push App for Splunk A New Splunk App: HTTP Event Push (HEP) Introduction We introduced a new Splunk app last week called HTTP Event Push (HEP). As the name implies, it enables you to push Splunk search results to a remote HTTP endpoint. It...
