Home > Vendors > splunk > splk-sefs

Share

SPLK-SEFS - Splunk Search Expert Fast Start

This "Fast Start" course covers over 60 commands and functions and prepares students to be search experts. Students will learn how to effectively utilize time in searches, work with different time zones, use transforming commands and eval functions to calculate statistics, compare field values with eval functions and eval expressions, manipulate the output, normalize fields and field values, use lookups and sub searches to enrich results, and correlate and filter data from multiple sources.

Duration: 3.0 days

Enquire Now

Schedule

Virtual ILT | 08 May 2024 - 10 May 2024 India

Start learning today!

Click Hereto customize your Training

Objectives

  • Working with Time
  • Statistical Processing
  • Comparing Values
  • Result Modification
  • Leveraging Lookups and Subsearches
  • Correlation Analysis

Content

Topic 1 – Working with Time

  • Searching with Time
  • Formatting Time
  • Comparing index Time versus Search Time
  • Using Time Commands
  • Working with Time Zones

Topic 2 – Statistical Processing

  • What is a Data Series?
  • Transforming Data
  • Manipulating Data with eval
  • Formatting Data

Topic 3 – Comparing Values

  • Using eval to Compare
  • Filtering with where

Topic 4 – Result Modification

  • Manipulating Output
  • Modifying REsults Sets
  • Managing Missing Data
  • Modifying Field Values
  • Normalizing with eval

Topic 5 – Leveraging Lookups and Subsearches

  • Using Lookup Commands
  • Adding a Subsearch
  • Using the return Command

Topic 6 - Correlation Analysis

  • Caclulate Co-Occurance Between Fields
  • Analyze Multiple Datasets

 

Audience

Prerequisites

To be successful, students should have a solid understanding of the following:

  • How Splunk Works
  • Creating Search queries
  • Knowledge objects (specifically reports, lookups, and fields)

OR have taken the following:

  • Foundation Fast Start OR
  • What is Splunk, Intro to Splunk and Using Fields

Certification

product-certification

Course Benefits

product-benefits
  • Career growth
  • Broad Career opportunities
  • Worldwide recognition from leaders
  • Up-to Date technical skills
  • Popular Certification Badges

Splunk Popular Courses

splk-sefs

This "Fast Start" course covers over 60 commands and functions and prepares students to be search experts.

splk-iiss

This course prepares security practitioners to use SOAR to respond to security incidents.

splk-dyd

This course focuses on creating inputs, chain searches, event annotations, and improving dashboard performance.

splk-introdyd

This course focuses on dashboard creation, including prototyping, the dashboard definition, layouts types, adding visualizations, and dynamic coloring.
Enquire Now
gPlo4E
By clicking "Submit", I agree to the Terms Of Use and Privacy Policy