Splunk Related Exams
SPLK-5001 Exam
An analyst is investigating the number of failed login attempts by IP address. Which SPL command can be used to create a temporary table containing the number of failed login attempts by IP address over a specific time period?
Which dashboard in Enterprise Security would an analyst use to generate a report on users who are currently on a watchlist?
An analyst would like to visualize threat objects across their environment and chronological risk events for a Risk Object in Incident Review. Where would they find this?