Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Monitoring browsing

gruffalo
New Member
‎10-15-2020 07:14 PM

I want to create a setup where splunk monitors browsing from Firefox browser on ubuntu machine.
If a user browses a blacklisted website a real time alert is created and admin is notified.

breaking the problem to 2 separate isssue:
1) how do I get splunk to monitor Firefox browser on ubuntu
2) how do I create an alarm that goes to the admin (email, app etc)

Thank you!

0 Karma
Reply

inventsekar
Super Champion
‎10-15-2020 08:07 PM

1) how do I get splunk to monitor Firefox browser on ubuntu
a simple browsing log(not sure how to get this).. or, web logs from iis, or firewall logs for your team/group/company would be perfect for this browsing history.


2) how do I create an alarm that goes to the admin (email, app etc)

once you ingested the logs to splunk, then searching and creating alerts(alarm) email notifications is an easy task. 

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Join Principal Threat Researcher, Michael Haag, as he walks through:An introduction to the Splunk Threat ...

Splunk Life | Happy Pride Month!

Happy Pride Month, Splunk Community! 🌈 In the United States, as well as many countries around the ...

SplunkTrust | Where Are They Now - Michael Uschmann

The Background Five years ago, Splunk published several videos showcasing members of the SplunkTrust to share ...