Share Description
In this course, you will :
- Discover how to use the Splunk Search interface.
- Learn how to write Search Processing Language queries from the ground up.
- Investigate the Splunk commands. When you finish this course, you will have the skills and knowledge of data searching in Splunk that you need to excel as a Splunk user or administrator.
Syllabus :
1. Introduction to Search in Splunk
- Searching Machine Data
- Demo: Basics of Splunk Search
- Splunk Data Sets
2. Understanding the Basics of Splunk Search
- Splunk Roles in Search
- Data Storage in Splunk
- Bucket Management in Splunk
3. Using Field Searches for Splunk Searches
- Search Bar and Timeline
- Search Field Operators
- Splunk Field Sidebar
- Splunk Results Field
- Best Practices in Splunk Search
4. Building SPL Queries in Splunk
- What Is SPL?
- Building SPL Queries
- SPL Filtering & Modifying Search Result
- SPL Ordering Search Results
5. Performing Transformative Searches in Splunk
- What Are Transformative Commands?
- Splunk Stats Commands
- Splunk Chart Commands
6. Beyond the Basic Search
- What Is a Lookup?
- Day in the Life of a Splunk Admin
- Splunk Search Recap
