Result Modification (SRM)

Result Modification (SRM)

$500check
  • VAT: excluding VAT
  • Price completeness: This price is complete, there are no hidden additional costs.
Fast Lane Institute for Knowledge Transfer GmbH
Get alternatives
Logo Fast Lane Institute for Knowledge Transfer GmbH
Provider rating: starstarstarstarstar_half 9.0 Fast Lane Institute for Knowledge Transfer GmbH has an average rating of 9.0 (out of 34 reviews)

Need more information? Get more details on the site of the provider.

Get alternatives
Starting dates and places

This product does not have fixed starting dates and/or places.

Description

Kursinhalt

This course is designed for Splunk users, analysts, and administrators who want to learn how to modify and manipulate output and normalize data. You will learn how to use the untable, xyseries, appendpipe, eventstats, and streamstats commands to modify result sets and use the eval command and eval functions to manipulate field values and normalize data across multiple data sources.

Voraussetzungen

To be successful, students must have completed these Splunk Education course(s) or have equivalent working knowledge:

  • Intro to Splunk
  • Using Fields (SUF)
  • Visualizations
  • Working with Time (WWT)
  • Statistical Processing (SSP)
  • Comparing Values (SCV)

Zielgruppe

  • Users/Analysts
  • Administra…

Read the complete description

Frequently asked questions

There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.

Didn't find what you were looking for? See also: SQL & MySQL, PL/SQL, Programming (general), IT Security, and Web Accessibility.

Kursinhalt

This course is designed for Splunk users, analysts, and administrators who want to learn how to modify and manipulate output and normalize data. You will learn how to use the untable, xyseries, appendpipe, eventstats, and streamstats commands to modify result sets and use the eval command and eval functions to manipulate field values and normalize data across multiple data sources.

Voraussetzungen

To be successful, students must have completed these Splunk Education course(s) or have equivalent working knowledge:

  • Intro to Splunk
  • Using Fields (SUF)
  • Visualizations
  • Working with Time (WWT)
  • Statistical Processing (SSP)
  • Comparing Values (SCV)

Zielgruppe

  • Users/Analysts
  • Administrators
  • Engineers

Detaillierter Kursinhalt

Module1 - Manipulating Output

  • Convert a 2-D table into a flat table with the untable command
  • Convert a flat table into a 2-D table with the xyseries command

Module 2 - Modifying Result Sets

  • Append data to search results with the appendpipe command
  • Calculate event statistics with the eventstats command
  • Calculate "streaming" statistics with the streamstats command

Module 3 – Modifying Field Values

  • Understand the eval command
  • Use conversion and text eval functions to modify field values
  • Reformat fields with the foreach command

Module 4 – Normalizing with eval

  • Normalize data with eval functions
  • Identify eval functions to use for data and field normalization
There are no reviews yet.
    Share your review
    Do you have experience with this course? Submit your review and help other people make the right choice. As a thank you for your effort we will donate $1.- to Stichting Edukans.

    There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.