Splunk Search Expert Fast Start

Splunk Search Expert Fast StartSE-FSSPSplunkSP-SE-FS10<p>At the end of the course, you should be able to : </p> <ul> <li>Search with Time</li><li>Format Time</li><li>Compare Index Time versus Search Time</li><li>Use Time Commands</li><li>Work with Time Zones</li><li>Understand what is Data Series</li><li>Transform Data</li><li>Manipulate Data with eval</li><li>Format Data</li><li>Use eval to Compare</li><li>Filter with where</li><li>Manipulate Output</li><li>Modify Result Sets</li><li>Manage Missing Data</li><li>Modify Field Values</li><li>Normalize with eval</li><li>Use Lookup Commands</li><li>Add a Subsearch</li><li>Use the return Command</li><li>Calculate Co-Occurrence Between Fields</li><li>Analyze Multiple Datasets</li></ul><p>To be successful, students should have a solid understanding of the following: </p> <ul> <li>How Splunk Works</li><li>Creating Search queries</li><li>Knowledge objects (specifically reports, lookups, and fields)</li></ul><p>OR have taken the following: </p> <ul> <li>Foundation Fast Start OR</li><li><span class="attentionbbcode" title="inactive or disabled course: SP-WIS">!</span>What is Splunk? <span class="fl-prod-pcode">(WIS)</span>, <span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/fr/product/splunk-its"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Intro to Splunk <span class="fl-prod-pcode">(ITS)</span></a></span> and <span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/fr/course/splunk-suf"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Using Fields <span class="fl-prod-pcode">(SUF)</span></a></span></li></ul><h5>Topic 1 – Working with Time</h5><ul> <li>Searching with Time</li><li>Formatting Time</li><li>Comparing index Time versus Search Time</li><li>Using Time Commands</li><li>Working with Time Zones</li></ul><h5>Topic 2 – Statistical Processing</h5><ul> <li>What is a Data Series?</li><li>Transforming Data</li><li>Manipulating Data with eval</li><li>Formatting Data</li></ul><h5>Topic 3 – Comparing Values</h5><ul> <li>Using eval to Compare</li><li>Filtering with where</li></ul><h5>Topic 4 – Result Modification</h5><ul> <li>Manipulating Output</li><li>Modifying REsults Sets</li><li>Managing Missing Data</li><li>Modifying Field Values</li><li>Normalizing with eval</li></ul><h5>Topic 5 – Leveraging Lookups and Subsearches</h5><ul> <li>Using Lookup Commands</li><li>Adding a Subsearch</li><li>Using the return Command</li></ul><h5>Topic 6 - Correlation Analysis</h5><ul> <li>Caclulate Co-Occurance Between Fields</li><li>Analyze Multiple Datasets</li></ul><h5>Topic 1 – Working with Time</h5><ul> <li>Searching with Time</li><li>Formatting Time</li><li>Comparing index Time versus Search Time</li><li>Using Time Commands</li><li>Working with Time Zones</li></ul><h5>Topic 2 – Statistical Processing</h5><ul> <li>What is a Data Series?</li><li>Transforming Data</li><li>Manipulating Data with eval</li><li>Formatting Data</li></ul><h5>Topic 3 – Comparing Values</h5><ul> <li>Using eval to Compare</li><li>Filtering with where</li></ul><h5>Topic 4 – Result Modification</h5><ul> <li>Manipulating Output</li><li>Modifying REsults Sets</li><li>Managing Missing Data</li><li>Modifying Field Values</li><li>Normalizing with eval</li></ul><h5>Topic 5 – Leveraging Lookups and Subsearches</h5><ul> <li>Using Lookup Commands</li><li>Adding a Subsearch</li><li>Using the return Command</li></ul><h5>Topic 6 - Correlation Analysis</h5><ul> <li>Caclulate Co-Occurance Between Fields</li><li>Analyze Multiple Datasets</li></ul>At the end of the course, you should be able to : - Search with Time - Format Time - Compare Index Time versus Search Time - Use Time Commands - Work with Time Zones - Understand what is Data Series - Transform Data - Manipulate Data with eval - Format Data - Use eval to Compare - Filter with where - Manipulate Output - Modify Result Sets - Manage Missing Data - Modify Field Values - Normalize with eval - Use Lookup Commands - Add a Subsearch - Use the return Command - Calculate Co-Occurrence Between Fields - Analyze Multiple DatasetsTo be successful, students should have a solid understanding of the following: - How Splunk Works - Creating Search queries - Knowledge objects (specifically reports, lookups, and fields) OR have taken the following: - Foundation Fast Start OR - What is Splunk? (WIS), Intro to Splunk (ITS) and Using Fields (SUF)Topic 1 – Working with Time - Searching with Time - Formatting Time - Comparing index Time versus Search Time - Using Time Commands - Working with Time Zones Topic 2 – Statistical Processing - What is a Data Series? - Transforming Data - Manipulating Data with eval - Formatting Data Topic 3 – Comparing Values - Using eval to Compare - Filtering with where Topic 4 – Result Modification - Manipulating Output - Modifying REsults Sets - Managing Missing Data - Modifying Field Values - Normalizing with eval Topic 5 – Leveraging Lookups and Subsearches - Using Lookup Commands - Adding a Subsearch - Using the return Command Topic 6 - Correlation Analysis - Caclulate Co-Occurance Between Fields - Analyze Multiple DatasetsTopic 1 – Working with Time - Searching with Time - Formatting Time - Comparing index Time versus Search Time - Using Time Commands - Working with Time Zones Topic 2 – Statistical Processing - What is a Data Series? - Transforming Data - Manipulating Data with eval - Formatting Data Topic 3 – Comparing Values - Using eval to Compare - Filtering with where Topic 4 – Result Modification - Manipulating Output - Modifying REsults Sets - Managing Missing Data - Modifying Field Values - Normalizing with eval Topic 5 – Leveraging Lookups and Subsearches - Using Lookup Commands - Adding a Subsearch - Using the return Command Topic 6 - Correlation Analysis - Caclulate Co-Occurance Between Fields - Analyze Multiple Datasets3 jours3000.003000.003000.003000.003000.002500.003000.003000.003000.003000.003000.003000.003000.004140.003300.00300.00300.00300.00300.00300.00300.00300.00300.00300.00300.00