https://community.splunk.com/t5/Security/correlation-searches/m-p/695911#M18066 <P>Hi&nbsp;<a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/267230">@tuts</a>&nbsp;,</P><P>are you speaking of Enterprise Security?</P><P>Anyway, if you install the Splunk Security Essentials App (<A href="https://splunkbase.splunk.com/app/3435" target="_blank">https://splunkbase.splunk.com/app/3435</A>) you have all the available Correlation Searches and for each one there's s test data set that you can use.</P><P>Ciao.</P><P>Giuseppe</P> Sun, 11 Aug 2024 09:16:11 GMT gcusello 2024-08-11T09:16:11Z https://community.splunk.com/t5/Security/correlation-searches/m-p/695902#M18065 <P>Peace be upon you. I am now running correlation searches and I do not have data to fully test them. I want to activate them in order to protect the company from any attack. I have MITRE ATT&amp;CK Compliance<BR />Security Content<BR />But I do not know where to start and how to arrange myself<BR />I hope for advice</P> Sat, 10 Aug 2024 19:29:14 GMT https://community.splunk.com/t5/Security/correlation-searches/m-p/695902#M18065 tuts 2024-08-10T19:29:14Z https://community.splunk.com/t5/Security/correlation-searches/m-p/695911#M18066 <P>Hi&nbsp;<a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/267230">@tuts</a>&nbsp;,</P><P>are you speaking of Enterprise Security?</P><P>Anyway, if you install the Splunk Security Essentials App (<A href="https://splunkbase.splunk.com/app/3435" target="_blank">https://splunkbase.splunk.com/app/3435</A>) you have all the available Correlation Searches and for each one there's s test data set that you can use.</P><P>Ciao.</P><P>Giuseppe</P> Sun, 11 Aug 2024 09:16:11 GMT https://community.splunk.com/t5/Security/correlation-searches/m-p/695911#M18066 gcusello 2024-08-11T09:16:11Z