更新时间:2021-06-25 21:44:28
封面
版权信息
Packt Upsell
Why subscribe?
PacktPub.com
Contributors
About the authors
About the reviewer
Packt is searching for authors like you
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Sections
Getting ready
How to do it...
How it works...
There's more...
See also
Get in touch
Reviews
Play Time – Getting Data In
Introduction
Indexing files and directories
Adding a file or directory data input using the CLI
Adding a file or directory input using inputs.conf
One-time indexing of data files using the Splunk CLI
Indexing the Windows event logs
Getting data through network ports
Adding a network input using the CLI
Adding a network input using inputs.conf
Using scripted inputs
Using modular inputs
Using the Universal Forwarder to gather data
Adding the receiving indexer via outputs.conf
Receiving data using the HTTP Event Collector
Getting data from databases using DB Connect
Loading the sample data for this book
Data onboarding – defining field extractions
Data onboarding - defining event types and tags
Adding event types and tags using eventtypes.conf and tags.conf
Installing the Machine Learning Toolkit
Diving into Data – Search and Report
The Search Processing Language
Searching in Splunk
Boolean operators
Common commands
Time modifiers
Working with fields
Saving searches in Splunk
Making raw event data readable
