My lookup table is a simple list of malicious domains. How can I do a search such that I can search for the `malicious domain*` instead of just an exact match for the `malicious domain` in my firewall logs?
**Lookup table**
badsite.com
malware.com
**I want it to match against**
theother.badsite.com/
microsoft.malware.com/download.exe
**Current Query**
index=web [|inputlookup badboylist.csv | fields uri] | stats count by uri
↧