Alerting

Splunk Anomaly Detection for Logs

maheswar6523
New Member

Team,

Are there any working sample to create a POC on Splunk Anomaly Detection using Logs messages.
In our senario we need to notify admin if any login failure /Error received we need to notify an alert.

Thanks
Uma

Tags (1)
0 Karma

niketn
Legend

Two of the Starting points would be

1) Machine Learning Toolkit App
2) Splunk Security Essentials App

Some of the good blocks to read:
1) Anomaly Detection with Splunk IT Service Intelligence and Machine Learning Toolkit v3.2 series
2) Hunting With Splunk Series
3) Advanced Statistics Splunk Documentation

____________________________________________
| makeresults | eval message= "Happy Splunking!!!"
0 Karma
Get Updates on the Splunk Community!

Mastering Data Pipelines: Unlocking Value with Splunk

 In today's AI-driven world, organizations must balance the challenges of managing the explosion of data with ...

The Latest Cisco Integrations With Splunk Platform!

Join us for an exciting tech talk where we’ll explore the latest integrations in Cisco + Splunk! We’ve ...

AI Adoption Hub Launch | Curated Resources to Get Started with AI in Splunk

Hey Splunk Practitioners and AI Enthusiasts! It’s no secret (or surprise) that AI is at the forefront of ...