Submit Your Queries
Filter and re-arrange how Splunk displays fields within search results. Keep only the host and ip fields, and display them in the order: host, ip. fields host, ip Keep only the host and ip fields, and remove all internal fields (for example,. fields + host, ip time, raw, etc.) that may cause problems in Splunk Web. KQL cheat sheets - Quick Reference official page Mar 01 2020 07:05 AM This article shows you a list of functions and their descriptions to help get you started using Kusto Query Language.
Help us grow by joining in. Submit your own Splunk search queries and let us know which queries work and which ones don't by voting.
Newest Queries
- Query for when PowerShell execution policy is set to BypassApril 9, 2021
- Reports Owned by Admin Users and Writable by OthersApril 9, 2021
- Remove mulitple values from a multivalue fieldMarch 29, 2021
- List all your existing indexes or check if index existsMarch 24, 2021
- Deployed application statusMarch 18, 2021
- Splunk Apps added to an instanceJanuary 11, 2021
- emoji bonanzaNovember 6, 2020
- Identifying Hosts not sending data for more than 6 hoursNovember 6, 2020
Splunk Query Language Cheat Sheet
Cheat Sheet Recipes
Most Popular Queries
Recent Comments
- on Apache Traffic Dashboard
- on List of Indexes
- on Failed Attempt to Login to a Disabled Account
- on List of Alerts via REST
- on Failed Attempt to Login to a Disabled Account
- on Security Access granted to an Account
- on List of Indexes
- on ProofPoint TAP Dashboard
Follow us on Twitter
Download Our Official App
Operate in an environment without constant web access? This app hopes to lessen the burden of manually copying queries from our website. Install the app and have our SPL at your fingertips to use within your environment!
Common Splunk Queries
Download it on Splunkbase.