Splunk Fundamentals

Splunk is a software platform used for searching, analyzing and visualizing machine-generated big data.

This instructor-led, live training (online or onsite) is aimed at business managers and business analysts who wish to search, analyze, and visualize data using Splunk.

By the end of this training, participants will be able to:

• Install and configure Splunk.
• Collect and index all kinds of machine data.
• Implement real-time search, analysis and visualization of large datasets.
• Create and share complex dashboards and reports.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• This training is based on the latest version of Splunk.
• To request a customized training for this course, please contact us to arrange

• Experience with business intelligence and data visualization.

• Business managers
• Business analysts

• Understand the components and architecture of Splunk
• Identify the various uses and applications of Splunk
• Learn about Splunk apps and their role in data analysis
• Customize your user settings in Splunk
• Master basic navigation within the Splunk interface

Basic Searching  

• Execute basic Splunk searches to retrieve data
• Set the time range for your searches effectively
• Analyze the contents of search results comprehensively
• Refine and refine searches to narrow down results
• Leverage the timeline to visualize historical data
• Manipulate events using various search operators
• Control search jobs and manage their progress
• Save valuable search results for future reference

Using Fields in Searches  

• Gain insights into the concept of fields and their importance in Splunk
• Employ fields effectively within search queries
• Utilize the fields sidebar for convenient field management

Search Language Fundamentals 

• Review basic search commands and common search practices
• Understand the structure of the search pipeline
• Specify indexes for targeted data retrieval
• Implement various search commands for data manipulation: tables, rename, fields, dedup, and sort

Using Basic Transforming Commands  

• Leverage the top command to identify the most frequent events or values
• Employ the rare command to uncover the least frequent events or values
• Master the stats command for data aggregation and analysis

Creating Reports and Dashboards  

• Convert saved searches into comprehensive reports
• Edit and customize existing reports to enhance their presentation
• Generate reports displaying statistical summaries (tables)
• Create visually appealing reports using charts and visualizations
• Construct dashboards to organize and display multiple reports
• Embed reports within dashboards for streamlined data exploration
• Modify and enhance dashboards to suit specific needs

Creating and Using Lookups 

• Understand the concept of lookups and their role in data enrichment
• Analyze an example of a lookup file to grasp its structure
• Generate lookup files and incorporate them into Splunk
• Configure automatic lookups for efficient data retrieval
• Utilize lookups within searches to enhance data analysis and context

Creating Scheduled Reports and Alerts

• Comprehend the concept of scheduled reports and their automated execution
• Configure scheduled reports to automate data analysis and reporting
• Grasp the concept of alerts and their role in monitoring events
• Create alerts to notify you of critical events or anomalies
• Monitor fired alerts to take timely action