Security

Community Activity

Full list of security reports - compliance and operations Hi there!I'm looking for a comprehensive list of report ideas for all of security, including management/metrics, oper... by dbroggy Path Finder in Security 08-20-2024 0 1	0	1
Windows performance -Velocity SD Service Counters logs Hello I have some issue getting the Windows performance -Velocity SD Service Counters logs. I used[perform://Velocity... by SplunkDash Motivator in Security 08-19-2024 0 0	0	0
Search query for consecutive events Dear Splunkers, I would like ask your advice in order to complete following search result. My table checks for consec... by Stives Explorer in Security 08-18-2024 0 4	0	4
Extract Epoch Time as readable time format using props.conf Hello, I have events with epoch time. How can I extract epoch time in human readable format using props.conf. My prop... by SplunkDash Motivator in Security 08-17-2024 0 1	0	1
Unable to access Splunk Cloud access login failed error message Hello team, my Splunk cloud free instance has been locked out can you help me reset my password. thank you. by sapatil New Member in Security 08-15-2024 0 3	0	3
correlation searches Peace be upon you. I am now running correlation searches and I do not have data to fully test them. I want to activat... by tuts Path Finder in Security 08-11-2024 0 1	0	1
What permission / capability do I need to create KV store collection? Hi all, when the user tries to create a KV store collection through Lookup Editor, he got the error You do not have p... by Motoko89 Path Finder in Security 08-08-2024 1 5	1	5
Applying Certificates to Secure Port 8000 (web.conf) and 8089 (server.conf) in v8.2*- Solution I had so much trouble with this but figured I would share what I did to make it work for me. You may have other ways ... by amt Explorer in Security 08-07-2024 0 4	0	4
Accessing apps in 6.4.x results in "Error connecting: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed" After moving to Splunk 6.4.x, the following error can occur in the UI when navigating to: Apps —> Browse more apps ... by arowsell_splunk Splunk Employee in Security 08-06-2024 1 10	1	10
debug/refresh for authorize.conf capabilities Hello,Is /debug/refresh enough to reload role capabilities for authorize.conf?Thanks. Splunk entreprise v9 by splunkreal Influencer in Security 08-05-2024 0 3	0	3
PCI and PAN TeamI just was able to create a search in Splunk to detect Credit Card numbers. PCI was also onboarded into our new S... by tjbacchus New Member in Security 08-02-2024 0 2	0	2
Newly added monitor only ingests some of the data SO the other day, I was asked to ingest some data for jenkins, and Splunk has seemed to only ingest some of that data... by Abass42 Communicator in Security 07-31-2024 0 5	0	5
UserQuery Option for Splunk Dashboard Hey, I am doing Predictive Maintenance using LLM's and I want to use Splunk to build dashboard. There I am going to i... by syaganti Loves-to-Learn Everything in Security 07-31-2024 0 6	0	6
analyze this data in Splunk Scenario: The device has been compromised, and we want to understand how the breach occurred. We have extracted data ... by tuts Path Finder in Security 07-31-2024 0 4	0	4
Use SSO and reverse proxy to skip the login page I want to use SSO and reverse proxy to skip the login page and go directly to the service app page.I found several re... by Hamsu Loves-to-Learn Lots in Security 07-30-2024 0 0	0	0
Integrating LLM's into Splunk Dashboard I finetuned LLM and I want to integrate that with Splunk. In Splunk Dashboard, I am going to include Question/Answeri... by syaganti Loves-to-Learn Everything in Security 07-30-2024 0 0	0	0
Enrich ES webhook event trigger alert with annotation Hi there, now I'm trying some of escu's built-in rules and sending them as notable alerts and via msteams webhooks. H... by elend Communicator in Security 07-30-2024 0 0	0	0
AI integration with Splunk- How can I encapsulate the token value example: '$SourceCode_Tok$' ? Hello, I am working on a project to integrate Splunk with a LLM model. I have created an app that search vulnerabili... by Marino25 Observer in Security 07-30-2024 0 1	0	1
How to Reset the Admin password? I just realized that I lost the Admin password and I need a way to access the system, with my Admin credentials. by Lionel Splunk Employee in Security 07-23-2024 47 40	47	40
Webhook - Pass certificate for webservice Hello, I invoke the rest webservice from Alert webhook which works fine for unsecured webservice calls. But it fails ... by senthilkumar76 Engager in Security 07-23-2024 0 1	0	1
How can I create alerts based on this app data received using API How can I create alerts based on this app data received using API? How this app https://splunkbase.splunk.com/app/696... by aruncp333 Explorer in Security 07-22-2024 0 1	0	1
Does anyone know how to programmatically create SAML group to Splunk Role mappings in Splunk 9.2? I have an outside SAML system (Okta) which we are using to login to our Splunk system and we are defining indexes for... by BlueSocket Contributor in Security 07-19-2024 0 1	0	1
Vulnerability in compression algorithm Hi all!We deployed Splunk Cluster on OEL 8. The latest version is currently installed - 9.2.2. The vulnerability scan... by Zhanali Path Finder in Security 07-18-2024 0 3	0	3
Splunkd services are not starting on boot-start Hi All,Hope this message finds you well.I have installed splunk on-prem on a linux box as a splunk user and have give... by man03359 Communicator in Security 07-18-2024 0 3	0	3
SPLUNK not starting after certificate renewal Hello, I am running SPLUNK 9.1.2 on Linux and ever since I installed a new internal certificate, I am not able to run... by Orange_girl Loves-to-Learn Everything in Security 07-17-2024 0 2	0	2