Im fairly new to splunk (and linux for that matter) but I am trying to find a Web Page or Manual or whaeter that will list all the possible search commands/strings I can use to search through event logs that have been sucked into splunk.
I am most interested in searching windows security logs, but if there were a repository that listed or helped me learn how to search with Splunk and what strings or commands were available that would be sweet.
asked 19 Jul '10, 15:10
Here are some resources I would recommend:
These pages also include other links that are quite helpful. I won't duplicate them all here, it's better to reference them within their original context.
answered 19 Jul '10, 15:17