Interactive search panel visualization commands
Important: On May 01, 2025, Splunk App for Fraud Analytics reached its end of sale, and will reach its end of life on May 01, 2027.
Use the following table to match search fields:
Note: You can use partial words for matching search fields. The pipe character "|" indicates "OR". The equal sign "=" indicates an exact match. The exclamation point "!" indicates NOT.
| Search field | Matches |
|---|---|
| chi | Matches China, Chile, Czechia |
| chi∣spa | Matches China, Chile, Czechia, Spain |
| chi∣=spa | Matches China, Chile, Czechia, Spa (but not Spain) |
| adm | Matches admin, administrator |
| =adm | Matches admin (but not administrator) |
| !adm | Matches anything BUT NOT any values containing "admin" |
| !=adm | Matches anything BUT NOT exact value of "admin" |
| =gadmin | Matches anything BUT NOT exact values of "admin" or "gadmin" |
| joe | Matches anything BUT NOT exact values of "admin" or any values containing "joe" (case insensitive) |
| 123.45.0.0/16 | Matches IP addresses to CIDR mask |
| 67.0.0.0/8 | Matches IP addresses to multiple CIDR masks |
| 199 | Matches all numerical values greater than 199 |
| >=400 <500 | Matches all numerical values within 400 ... 499 range |