morpheus.parsers.splunk_notable_parser.SplunkNotableParser#
- class SplunkNotableParser[source]#
Bases:
EventParserThis is class parses splunk notable logs.
- Attributes:
columnsList of columns that are being processed.
event_nameEvent name define type of logs that are being processed.
Methods
parse(text)Parses the Splunk notable raw events.
parse_raw_event(text, event_regex)Processes parsing of a specific type of raw event records received as a dataframe.
- property columns#
List of columns that are being processed.
- Returns:
- set[str]
Event column names
- property event_name#
Event name define type of logs that are being processed.
- Returns:
- str
Event name
- parse(text)[source]#
Parses the Splunk notable raw events.
- Parameters:
- textcudf.Series
Raw event log text to be parsed.
- Returns:
- cudf.DataFrame
Parsed logs dataframe
- parse_raw_event(text, event_regex)[source]#
Processes parsing of a specific type of raw event records received as a dataframe.
- Parameters:
- textSeriesType
Raw event log text to be parsed.
- event_regex: typing.Dict[str, str]
Required regular expressions for a given event type.
- Returns:
- DataFrameType
Parsed logs dataframe