Thanks in advance for the assistance, I am very new to Splunk it is a great tool but I need some assistance. I am trying to create a filtered report with the following criteria. - I am filtering the data down based on phishing, and now I need to grab each of the individual src_ip and count them. over a 30 day period. Unfortunately I do not know have a prelist of IP addresses based on all of the examples. My goal is to go down the list and count the number of occurrences in this list and show the report on a front panel. Also, any good books or video training for learning how to do advanced filtering in Splunk. Thanks
... View more