How to create searches, reports and alerts using time fields, indexes and commands Course

Understand searches in Splunk.

1 hour, 35 minutes

Course description

Explore the commands used for searching data in Splunk. Understand the difference between transforming and non-transforming commands. View demonstrations on how to perform searches and understand how to tell a story using data.

Syllabus

Demo — transaction command

Video - 00:05:00

Demo: Correlate events using the transaction command.
Demo — stats, chart, timechart

Video - 00:14:00

Demo: Search data using the stats, chart and timechart commands.
Transforming commands — table, top, rare

Video - 00:09:00

Demo: Search data using the table, top and rare commands.
Theory — Transforming commands

Video - 00:14:00

Theory: Understand the purpose of transforming commands.
Commands, part 2 — rename, sort & dedup

Video - 00:15:00

Demo: Search data using the rename, sort and dedup commands.
Commands, part 1

Video - 00:12:00

Theory: Understand how to use non-transforming commands.
Search basics, part 2

Video - 00:10:00

Theory: Learn about command syntax and how to use SPL (Splunk Processing Language) to search data.
Search basics, part 1

Video - 00:16:00

Theory: Understand how to use the search syntax and components.

Meet the author

Gina Napier

Ms. Gina Napier is a cybersecurity professional who specializes in the development of security solutions to remediate vulnerabilities in IT environments. She has spent over 13 years supporting multiple DoD branches including the Army, Air Force, Navy, and Marine Corps and has played a key role in the continued development of numerous cybersecurity programs.

As the first recipient of Microsoft's Salute to our Troops Award, Gina has shown an ongoing contribution to the IT field by encouraging shared responsibility for cybersecurity efforts across the nation. She is passionate about encouraging ethics and thoughtful analysis regarding cyberattacks in the IT industry.

Gina currently holds a master's degree in Cybersecurity as well as over 12 IT certifications, including the CISSP, CISA, AWS: Solutions Architect and Azure Administrator Associate. Currently, she is serving as a Sr. Information Security Analyst at General Dynamics and is the founder of the tech startup Switch Code. Her favorite quote is, "Find what you love to do and do it with all your heart!"

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo

Award-winning training you can trust