Kahoot 6

Question 1

What character acts as a wildcard in Splunk?

a. ) Question mark
b. ) Asterisk
c. ) Colon
d. ) Quotation marks

Answer 1

b.)

Question 2

Where are most linux logs located?

a. ) /etc/bin
b. ) /home/log
c. ) /var/log
d. ) /var/bin

Answer 2

c.)

Question 3

All SIEM providers use standardized query syntax T or F

Answer 3

False

Question 4

Spunk query syntax with Search Processing Language and is similar to SQL T or F

Answer 4

True

Question 5

What are two parsing methods used in Splunk?

a. ) Constant delimiters
b. ) Regex
c. ) Manual Selecting
d. ) Refreshing data

Answer 5

a & b

Question 6

Which of the following operators does Splunk support?

a. ) NOT
b. ) OR
c. ) AND
d. ) All the above

Answer 6

d.)

Question 7

What is used to contain a Nested operation?

a. ) Quotation marks
b. ) Dashes
c. ) Squared brackets
d. ) Parantheses

Answer 7

d.)

Question 8

Column-based, pie, $ bubble charts are different types of graphs used in the visualization tab T or F

Answer 8

True