- List sources:
| metadata type=hosts index=* OR index=_*StackOverflow - Delete:
source=path\to\sourcename | deleteGoSplunk
- Types of logs: access, error, fail2ban, ...
- Checking for suspicious IP's and malicious logins
| metadata type=hosts index=* OR index=_* StackOverflowsource=path\to\sourcename | delete GoSplunk