Query Library
New postPost queries you find useful or lookup examples to help get you started with searching your data.
Show all
Sort by newest post
-
Metrics Operators Cheat Sheet Pinned5 votes 1 comment
-
New Log Operators Cheat Sheet Pinned2 votes 0 comments
-
Flatten array in message to multiple records0 votes 1 comment
-
Query on collector type0 votes 1 comment
-
Hi I am trying to parse a regEx but I am getting error0 votes 3 comments
-
Skip raw json message from output after a join0 votes 1 comment
-
combine0 votes 1 comment
-
Get all logs where one log message is immediately followed by other.0 votes 0 comments
-
Log Aggregation0 votes 1 comment
-
Difference between two time stamp0 votes 1 comment
-
Display the next records in the top0 votes 1 comment
-
Are there in group by operators for String fields0 votes 6 comments
-
timeslice on custom date0 votes 1 comment
-
Querying sumologic logs api0 votes 1 comment
-
windows event checking0 votes 1 comment
-
Where log matching grouping operator doesnt exist in time range0 votes 1 comment
-
New! Regex Cheat Sheet0 votes 0 comments
-
Combine multiple queries0 votes 1 comment
-
外部結合の方法について0 votes 1 comment
-
既存の定義されたfieldを複製したい0 votes 1 comment
-
Parse JSON in Logs2Metrics0 votes 1 comment
-
Convert splunk query to Sumo logic0 votes 1 comment
-
Parsing based on condition0 votes 1 comment
-
best practices for search0 votes 1 comment
-
Querying using if statement0 votes 2 comments
-
after applying count by _timeslice, can I apply pct on _count?0 votes 1 comment
-
Return +/- 2 minutes logs around an error found within a collection.0 votes 1 comment
-
how to timeslice by a parsed timestamp field0 votes 2 comments
-
Aggregating nested JSON object1 vote 0 comments