Cleaning Dirty Data- Splunking JAWS

I’ve been playing around with my shark data. I know this is not the sort of data you would normally ingest into Splunk but when I’m testing different visualizations or new apps I like to use data that interests me. The down side is that the data is not always clean. Below I’m going to show you how to clean up Mixed case dirty data directly from search. Dirty Data In this case I have a field that has mixed … Read More

Word Cloud Visualisations for Splunk

Every month I spend some time on Splunkbase checking out what’s on offer. Today I’m going to share with you a super cool gem I found there. This is one of my favorite visualizations and I’ve been using it heaps lately. It’s a word cloud Visualisation and once installed can be selected straight from the available reports list. I can’t take any credit for this, that all goes to Patrick Wied. He has made it available to the Splunk community … Read More

The Splunk Shark Files

SplunkSharkFile

Recently we saw a crazy situation where you have a community divided over shark nets. Conservation Groups have been protesting on the beaches for shark net removal. Yet not two weeks later the same community are partitioning the councils to implement more shark nets to keep the beach safe. Understanding that this has all taken place in the shadow of three serious shark attacks in the past 30 days. To say people are nervous is an understatement. I’m a diver, … Read More

Know Your Splunkers

SplunkRoles

I get asked all the time by customers and recruiters, “What does a Splunk Developer do?” A simple question and a good one. So often I see Splunk roles being advertised with skill sets that just don’t work together. So to jump straight into this I thought I’d clarify the various skills of Splunk roles Power User This is typically someone who works “for the business” but has been trained in using Splunk on a day to day basis. They can … Read More

The Secret Language of Splunk

Imagine this… first day of your first corporate job. Within an hour of arriving you are sitting in a meeting room listening to a group of people discussing something very important in great detail and you don’t have a clue what they are on about. There are ‘pdis’,’inits’, ‘poes’, ‘cob’ and that’s before you look at systems ‘db2’, ‘sap’, ‘jde’, ‘pptx’ and ‘cfgs’. Its like you are on holidays but not the good kind. The kind where you are in … Read More

What is wrong with this picture?

What’s wrong with this picture? Last time I checked there were 2,739 km between Adelaide and Perth. ooops! Be careful you don’t fall into this trap when styling splunk with custom colours. When assigning colours to a pie chart splunk loops through the colour list until all wedges are coloured.  <option name=”charting.seriesColors”>[03A849,008BCC,6D559F,BE0040,EC731A,F5C300]</option> Styling splunk is more than making things pretty all the styling in the world won’t move Perth to Adelaide.