About advanced statistics
You can use the
eval commands, and how to create sparkline charts. See calculate basic statistics.
You might want to remove outliers that unnecessarily skew your calculations or the way your charts plot the data. See Finding and removing outliers
You can detect patterns in your data, grouping events based on how similar the events are to each other. See Detecting patterns.
If there are patterns and correlations to events that you monitor, you can use them to predict future activity. With this knowledge, you can proactively send alerts based on thresholds and perform "what-if" analyses to compare various scenarios. See About time series forecasting and Machine Learning Toolkit.
Add sparklines to search results
Commands for advanced statistics
This documentation applies to the following versions of Splunk Cloud Platform™: 7.0.13, 8.2.2107, 8.0.2006, 8.0.2007, 8.1.2009, 8.1.2011, 8.1.2012, 8.1.2101, 8.1.2103, 8.2.2104, 8.2.2105 (latest FedRAMP release), 8.2.2106