Michael Simko

What is Splunk SOAR (Formerly Splunk Phantom)?

You’ve had an SIEM for a while, it’s doing well, and now you want to take that to the next level. That often means time

Splunk Support: Where to Find Assistance

In this post, we’ll walk through the best places to find the proper assistance based on what is required. Several options are available for support,

Splunk Search Command Of The Week: dedup

Using the dedup Command

What is the Splunk dedup Command? The Splunk dedup command, short for “deduplication”, is an SPL command that eliminates duplicate values in fields, thereby reducing

Splunk Search Command Of The Week: spath

Using the spath Command

Your dilemma: You have XML or JSON data indexed in Splunk as standard event-type data. Sure, you’d prefer to have brought it in as an

conceptual illustration of different license sizes

Estimating Splunk License Sizes

What is a Splunk License? A Splunk license is a file that houses information about your license entitlement. This tells you what your abilities and

Splunk MLTK: What It Is And How It Works

What if there was a tool you could use to automate the time-consuming and nearly impossible parts of your job as a Splunk administrator? There

Michael Simko

What is Splunk SOAR (Formerly Splunk Phantom)?

Splunk Support: Where to Find Assistance

Using the dedup Command

Using the spath Command

Estimating Splunk License Sizes

Splunk MLTK: What It Is And How It Works

Quick Links

From the Blog

A Beginner’s Guide to Regular Expressions in Splunk

Using the join Command