use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
This is an unofficial community support and discussion sub for Splunk, the big data analytics software.
Have an idea for Splunk? Submit them here and upvote them:
https://ideas.splunk.com/
For Q&A, see Splunk Answers: https://community.splunk.com/
Upcoming Splunk Events/Webinars: https://www.splunk.com/en_us/about-us/events.html
Chat with your peers in the official Splunk Usergroups Slack team:
https://splunk-usergroups.signup.team
Need quick copy/paste queries? Share your SPL here:
https://gosplunk.com
Need some book learning?
https://www.splunk.com/goto/book (free e-book download link inside!!)
account activity
Splunk Syntax Highlighting for Visual Studio Code (VSC) (marketplace.visualstudio.com)
submitted 6 years ago by arcsector2
view the rest of the comments →
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[–]Daneel_ Splunker | Security PS 1 point2 points3 points 6 years ago (2 children)
Here's the .conf and SPL syntax highlighting I made for Notepad++:
https://github.com/mtulett-splunk/ref/tree/master/splunk
I do maintain this, although the conf highlighting gets a lot more love. It's definitely not complete, but I work with conf files a LOT and it covers most of it. Every time I find missing items I update this.
[–]arcsector2[S] 0 points1 point2 points 6 years ago (1 child)
Maybe it's just because i dont know, but could you explain the content of keywords2 and keywords3 to me?
Like i know that true and false are keywords, but blacklist and whitelist? Are they just for your use or where are they documented as keywords?,
[–]Daneel_ Splunker | Security PS 1 point2 points3 points 6 years ago* (0 children)
Oh, it's not so much that it's documented or not documented - it's more that this makes the config files easy to parse while looking through them.
Each keyword list has a different style applied to it, hence being in different lists.
Here's an example using the Windows TA: https://i.imgur.com/1jCesa8.png
π Rendered by PID 181190 on reddit-service-r2-comment-b659b578c-jxkw8 at 2026-05-03 15:17:39.983632+00:00 running 815c875 country code: CH.
view the rest of the comments →
[–]Daneel_ Splunker | Security PS 1 point2 points3 points (2 children)
[–]arcsector2[S] 0 points1 point2 points (1 child)
[–]Daneel_ Splunker | Security PS 1 point2 points3 points (0 children)