All Apps and Add-ons

Queries to detect attacks on MYSQL, MS SQL, and Oracle DB

New Member

Does anyone has Use cases for detecting attacks on DB : MYSQL, MS SQL, and Oracle. OR Is there a app which does the job.


Tags (1)
0 Karma


There's no single way to detect an "attack". It will depend on how your particular database is configured, which features and options you are using (i.e. how exposed you are), how and what you audit and record in your log files, and what is "normal" for you. You can use all kinds of monitoring tools (including Splunk) to watch and analyze this data for you, but what may be of concern to me may be normal operations for you, and vice versa. To accurately identify a threat you will need to understand your architecture and infrastructure intimately and configure your analysis tools to pay attention to what is important and (just as tricky) ignore what is not.

0 Karma
Get Updates on the Splunk Community!

Optimize Cloud Monitoring

  TECH TALKS Optimize Cloud Monitoring Tuesday, August 13, 2024  |  11:00AM–12:00PM PST   Register to ...

What's New in Splunk Cloud Platform 9.2.2403?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.2.2403! Analysts can ...

Stay Connected: Your Guide to July and August Tech Talks, Office Hours, and Webinars!

Dive into our sizzling summer lineup for July and August Community Office Hours and Tech Talks. Scroll down to ...