After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that opened up a rift in cyberspace that swallowed you whole! The only way out is through…. The story begins here

So you searched, “what is the name of the usb key inserted by bob smith?” 

Read the article to find out more...

The learning doesn’t stop when .conf ends. Explore the new Best of .conf hub in the Splunk Community to revisit top sessions, watch recordings, and browse presentations organized by role and skill level.

Join the Splunk Agentic Ops Hackathon and build innovative AI-powered solutions across Observability, Security & Platform use cases and compete for a share of $20,000 in prizes and showcase what’s possible when AI meets operational data. Register today to start building. 

Join our May 2026 expert sessions to master end-to-end observability and Enterprise Security. Register now for our webinars, Tech Talks, and EMEA Office Hours.

In this month’s blog we're featuring three topic areas that have seen major new content drops. First, we're exploring the power of SPL2 with a trio of new articles that show you practical ways to put this evolved search language to work. Next, we're diving into new content on integrating Splunk AppDynamics into your observability strategy. And finally, we're sharing a pair of articles that take the pain out of SAML authentication configuration and troubleshooting. Plus, as always, there's plenty more new use cases to explore. Let's get into it! 

If you’re already using the Splunk OTel Java Agent for APM, enabling Secure Application is a drop-in upgrade. This walkthrough covers the exact code changes with a working demo you can clone and run.

Join our April 2026 expert sessions to master database monitoring, AI-driven security, and intelligent data management. Register now to get your questions answered in real-time.

In this month’s blog, we’re sharing brand new use cases for contact centers, critical data management strategies, and new AI-powered analysis tools. We are also thrilled to announce that Japanese translations are now available on Lantern, making our expert content accessible to even more of our global community! Read on to find out more. 

The rules of engagement are being rewritten. Join us as we bridge the gap between telemetry and tactics by connecting Splunk’s Top 50 Cybersecurity Threats with the latest Cisco Talos Year in Review report to reveal exactly how adversaries are operating in the wild today.

Join the global cybersecurity community at RSAC 2026 in San Francisco! Explore the "Power of Community" theme and visit Splunk at Booth N-6144 for live demos on the Agentic SOC and AI-powered detections.

Sharpen your security skills before GovSummit 2026. Join BOTS and Splunk University on April 7 for hands-on attack simulations, CTF competitions, and expert-led training. 

Join our interactive March 2026 sessions to connect with Splunk experts, troubleshoot your deployment, and explore the latest in AI and Security. Register now to get your questions answered in real-time.

Master your data collection strategy with our guide to the Splunk Universal Forwarder. Learn where to download the UF, its key security benefits, and how to automate your installation.

Evolving toward an AI-powered SecOps platform? Join our March 18 Office Hour to discuss Splunk Enterprise Security Essentials vs. Premier with experts Jerald Perry and Neal Dias.

In this blog we’re sharing all the details on more than 30 new articles published on Lantern last month, with a particular focus on the newest best practices for scaling automation and security workflow design. From a comprehensive series on Splunk SOAR playbook architecture to a closer look at the workflow enhancements in Enterprise Security 8.4, we’re providing the blueprints to help you move from manual tasks to sophisticated, high-maturity operations. We’re also delivering new resources for observability and Splunk platform specialists, covering everything from AI-assisted thresholding in ITSI to essential best practices for managing platform certificates and app development. Read on to find out more! 

Join us at Splunk Go in Austin, NYC and Atlanta, where we will unveil new innovations that help you secure, observe, and optimize the entire AI stack.

Don't let downtime compromise your mission. Join us at GovSummit 2026 in D.C. to master AI-powered automation and SecOps modernization for the public sector.

The agentic AI era is moving threats at machine speed. Join our live Splunk Enterprise Security Premier demo on February 26 to learn how to unify your SOC workflows, leverage built-in AI, and accelerate response times across hybrid environments.

A new month is here! Stay ahead of the curve and in the know with our comprehensive list of upcoming Tech Talks, Community Office Hours, and webinars. From insightful discussions to hands-on workshops, there’s something for everyone eager to dive deeper and learn. Don’t miss out — mark your calendars now!

This month, we’re highlighting the arrival of Splunk Enterprise Security 8.3 and what the new Premier and Essentials tiers mean for your SOC. We’re also diving into a new Solution Accelerator designed to simplify data compliance for the financial services industry. Alongside these features, we have a packed list of new articles covering everything from Linux systemd troubleshooting to cloud ingestion best practices. Let’s get into it! 

Hands-On Learning and Technical Seminars 

Sometimes, you just need to see the code. For those looking for a deep-dive educational experience, we have Technical Seminars (note: these require an additional fee). You can purchase Technical Seminars on the re

Are you tired of being a manual alert responder? The security landscape is shifting, and at Cisco Live, we’ll show you how to become a proactive orchestrator. We’re moving into the era of the Agentic SOC, where defenders leverage intelligent, automated ecosystems that learn, adapt, and scale. 

Stop manually curating risk scores. Discover how Entity Risk Scoring (ERS) in Splunk ES 8.3 automatically weights event frequency and severity to surface your riskiest entities instantly.

This month, we’re excited to share powerful new resources that focus on two of the most critical areas for modern IT and Security teams: using artificial intelligence to solve problems faster, and mastering the complexities of cloud-native infrastructure. Whether you are looking to automate your threat analysis or fine-tune your Kubernetes environment, our latest articles give you the expert guidance you need to succeed. 

Stop treating PCI DSS compliance like an annual fire drill. Discover how leading security teams use Splunk to maintain continuous compliance visibility, automatically track all 12 requirements, and turn audit preparation from weeks of scrambling into hours of confident reporting.

Stay ahead of the curve and in the know with our comprehensive list of upcoming Tech Talks, Community Office Hours, and webinars. From insightful discussions to hands-on workshops, there’s something for everyone eager to dive deeper and learn. Don’t miss out — mark your calendars now!Stay ahead of the curve and in the know with our comprehensive list of upcoming Tech Talks, Community Office Hours, and webinars. From insightful discussions to hands-on workshops, there’s something for everyone eager to dive deeper and learn. Don’t miss out — mark your calendars now!

This month, we’re excited to share powerful new resources that will transform how you manage security operations across hybrid environments. From implementing money-saving Federated Search capabilities for Amazon S3 to monitoring Google Cloud SQL or integrating with the Australian Signals Directorate's CTIS platform, we're bringing you guidance straight from expert Splunkers that addresses the most pressing challenges facing security teams today. On top of that, we've got lots more use cases, industry-specific guidance and best-practice tips to help you close out 2025 strong. Read on to find out more. 

For Digital Forensics and Incident Response (DFIR) practitioners, Splunk is a core part of daily workflow. Its Schema on the Fly and powerful Search Processing Language (SPL) allow for iterative and flexible investigation—ideal for the nature of forensic analysis.

Discover how Splunk ES Premier’s built-in User and Entity Behavior Analytics (UEBA) helps SOC teams detect hidden insider threats, reduce alert fatigue, and accelerate investigations.