Book description
Leverage Splunk's operational intelligence capabilities to unlock new hidden business insights and drive success
About This Book- Tackle any problems related to searching and analyzing your data with Splunk
- Get the latest information and business insights on Splunk 7.x
- Explore the all new machine learning toolkit in Splunk 7.x
This book is intended for data professionals who are looking to leverage the Splunk Enterprise platform as a valuable operational intelligence tool. The recipes provided in this book will appeal to individuals from all facets of business, IT, security, product, marketing, and many more! Even the existing users of Splunk who want to upgrade and get up and running with Splunk 7.x will find this book to be of great value.
What You Will Learn- Learn how to use Splunk to gather, analyze, and report on data
- Create dashboards and visualizations that make data meaningful
- Build an intelligent application with extensive functionalities
- Enrich operational data with lookups and workflows
- Model and accelerate data and perform pivot-based reporting
- Apply ML algorithms for forecasting and anomaly detection
- Summarize data for long term trending, reporting, and analysis
- Integrate advanced JavaScript charts and leverage Splunk's API
Splunk makes it easy for you to take control of your data, and with Splunk Operational Cookbook, you can be confident that you are taking advantage of the Big Data revolution and driving your business with the cutting edge of operational intelligence and business analytics.
With more than 70 recipes that demonstrate all of Splunk's features, not only will you find quick solutions to common problems, but you'll also learn a wide range of strategies and uncover new ideas that will make you rethink what operational intelligence means to you and your organization.
You'll discover recipes on data processing, searching and reporting, dashboards, and visualizations to make data shareable, communicable, and most importantly meaningful. You'll also find step-by-step demonstrations that walk you through building an operational intelligence application containing vital features essential to understanding data and to help you successfully integrate a data-driven way of thinking in your organization.
Throughout the book, you'll dive deeper into Splunk, explore data models and pivots to extend your intelligence capabilities, and perform advanced searching with machine learning to explore your data in even more sophisticated ways. Splunk is changing the business landscape, so make sure you're taking advantage of it.
Style and approachWith more than 70 recipes that demonstrate all of Splunk's features, not only will you find quick solutions to common problems, but you'll also learn a wide range of strategies and uncover new ideas that will make you rethink what operational intelligence means to you and your organization.
Table of contents
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Preface
-
Play Time – Getting Data In
- Introduction
- Indexing files and directories
- Getting data through network ports
- Using scripted inputs
- Using modular inputs
- Using the Universal Forwarder to gather data
- Receiving data using the HTTP Event Collector
- Getting data from databases using DB Connect
- Loading the sample data for this book
- Data onboarding – defining field extractions
- Data onboarding - defining event types and tags
- Installing the Machine Learning Toolkit
-
Diving into Data – Search and Report
- Introduction
- Making raw event data readable
- Finding the most accessed web pages
- Finding the most used web browsers
- Identifying the top-referring websites
- Charting web page response codes
- Displaying web page response time statistics
- Listing the top-viewed products
- Charting the application's functional performance
- Charting the application's memory usage
- Counting the total number of database connections
-
Dashboards and Visualizations - Make Data Shine
- Introduction
- Creating an Operational Intelligence dashboard
- Using a pie chart to show the most accessed web pages
- Displaying the unique number of visitors
- Using a gauge to display the number of errors
- Charting the number of method requests by type and host
- Creating a timechart of method requests, views, and response times
- Using a scatter chart to identify discrete requests by size and response time
- Creating an area chart of the application's functional statistics
- Using metrics data and a trellis layout to monitor physical environment operating conditions
- Using a bar chart to show the average amount spent by category
- Creating a line chart of item views and purchases over time
-
Building an Operational Intelligence Application
- Introduction
- Creating an Operational Intelligence application
- Adding dashboards and reports
- Organizing the dashboards more efficiently
- Dynamically drilling down on activity reports
- Creating a form for searching web activity
- Linking web page activity reports to the form
- Displaying a geographical map of visitors
- Highlighting average product price
- Scheduling the PDF delivery of a dashboard
- Extending Intelligence – Datasets, Modeling and Pivoting
-
Diving Deeper – Advanced Searching, Machine Learning and Predictive Analytics
- Introduction
- Calculating the average session time on a website
- Calculating the average execution time for multi-tier web requests
- Displaying the maximum concurrent checkouts
- Analyzing the relationship of web requests
- Predicting website traffic volumes
- Finding abnormally-sized web requests
- Identifying potential session spoofing
- Detecting outliers in server response times
- Forecasting weekly sales
- Summary
-
Enriching Data – Lookups and Workflows
- Introduction
- Looking up product code descriptions
- Flagging suspect IP addresses
- Creating a session state table
- Adding hostnames to IP addresses
- Searching ARIN for a given IP address
- Triggering a Google search for a given error
- Generating a chat notification for application errors
- Looking up inventory from an external database
- Being Proactive – Creating Alerts
- Speeding Up Intelligence – Data Summarization
-
Above and Beyond – Customization, Web Framework, HTTP Event Collector, REST API, and SDKs
- Introduction
- Customizing the application navigation
- Adding a Sankey diagram of web hits
- Developing a tag cloud of purchases by country
- Adding Cell Icons to Highlight Average Product Price
- Remotely querying Splunk's REST API for unique page views
- Creating a Python application to return unique IP addresses
- Creating a custom search command to format product names
- Collecting data from remote scanning devices
- Other Books You May Enjoy
Product information
- Title: Splunk Operational Intelligence Cookbook - Third Edition
- Author(s):
- Release date: May 2018
- Publisher(s): Packt Publishing
- ISBN: 9781788835237
You might also like
book
Splunk: Enterprise Operational Intelligence Delivered
Demystify Big Data and discover how to bring operational intelligence to your data to revolutionize your …
book
Implementing Splunk: Big Data Reporting and Development for Operational Intelligence
Learn to transform your machine data into valuable IT and business insights all using this comprehensive …
book
Splunk 7 Essentials - Third Edition
Transform machine data into powerful analytical intelligence using Splunk About This Book Analyze and visualize machine …
article
From ChatGPT to HackGPT: Meeting the Cybersecurity Threat of Generative AI
Emerging generative AI technologies such as ChatGPT are putting new tools in the hands of hackers. …
