Getting Data In

Monitoring browsing

gruffalo
New Member

I want to create a setup where splunk monitors browsing from Firefox browser on ubuntu machine.
If a user browses a blacklisted website a real time alert is created and admin is notified.

breaking the problem to 2 separate isssue:
1) how do I get splunk to monitor Firefox browser on ubuntu
2) how do I create an alarm that goes to the admin (email, app etc)

Thank you!

0 Karma

inventsekar
Super Champion

1) how do I get splunk to monitor Firefox browser on ubuntu
a simple browsing log(not sure how to get this).. or, web logs from iis, or firewall logs for your team/group/company would be perfect for this browsing history.


2) how do I create an alarm that goes to the admin (email, app etc)

once you ingested the logs to splunk, then searching and creating alerts(alarm) email notifications is an easy task. 

0 Karma
Get Updates on the Splunk Community!

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Join Principal Threat Researcher, Michael Haag, as he walks through:An introduction to the Splunk Threat ...

Splunk Life | Happy Pride Month!

Happy Pride Month, Splunk Community! 🌈 In the United States, as well as many countries around the ...

SplunkTrust | Where Are They Now - Michael Uschmann

The Background Five years ago, Splunk published several videos showcasing members of the SplunkTrust to share ...