Amelia

Amelia is an infamous explorer of Splunk knowledge!

Sourcetype Explorer

Ever feel like you're stumbling around in the dark, trying to discover the relevant search-time field extractions? Do you struggle to remember the order of search-time operations? Amelia's Sourcetype Explorer dashboard is just what you need!

Explore a search head, app, props.conf stanza, and select metadata

Explore all search-time field configurations

Explore event types their tags, and tags added to event types

The sourcetype explorer dashboard lists all search-time operations for the selected search head, props.conf stanza, and app. Optionally display metadata. Identify tags produced by event types, and event types related to each tag, etc.

Saved Search Explorer

Trying to tame your saved searches? Amelia's Saved Search Explorer dashboard is just what you need!

Explore searches by search head, app, and attributes Display fields, and search for text in any visible field. Searches are quantified according to the selected attributes and listed in a table. Disable/enable a search with one click!

Customize the attributes lookup table

The lookup file contains some attributes that identify saved searches that are sometimes the cause of performance problems, and you can add any other attributes to find searches that are important to you.

Get busy exploring!