Below are the commands INCLUDED in the "filtering results" CATEGORY:

• Search: This command retrieves events from indexes or filters the results of the previous search command. Events can be retrieved from your indexes by using keywords, wildcards, QUOTED phrases, and key/value expressions.
• Sort: The search results are sorted based on the fields that are SPECIFIED. The results can be sorted in reverse, ascending, or descending order. When sorting, the results can also be limited.
• Where: The 'where' command, however, filters search results using 'eval' expressions. When the 'search' command is used, it retains only those search results for which an evaluation was successful, while the 'where' command enables a deeper investigation of those search results. By using a 'search' command, one can DETERMINE the number of active nodes, but the 'where' command will provide a matching condition of an active node that is running a specific application.
• Rex: You can extract specific fields or data from your events using the 'rex' command. For instance, when you want to determine specific fields in an email id, like scaler@interviewbit.co, you can use the 'rex' command. This will distinguish scaler as the user ID, interviewbit.co as the domain, and interviewbit as the company. Rex allows you to slice, split, and break down your events however you like.