Splunk Enterprise Security

After collecting all the logs and writing search quarries, How to do incident management and develop use-cases, and security playbooks.

V4M51
Engager

After collecting all the logs and writing search quarries, How to do incident management and develop use-cases, and security playbooks.

Tags (1)
0 Karma

adonio
Ultra Champion

you can start with these security essentials apps:
https://splunkbase.splunk.com/app/3435/
https://splunkbase.splunk.com/app/3593/
https://splunkbase.splunk.com/app/3693/
there are more in splunkbase

down the road maybe consider Splunk Enterprise Security

0 Karma
Get Updates on the Splunk Community!

New Dates, New City: Save the Date for .conf25!

Wake up, babe! New .conf25 dates AND location just dropped!! That's right, this year, .conf25 is taking place ...

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud  In today’s fast-paced digital ...

Observability protocols to know about

Observability protocols define the specifications or formats for collecting, encoding, transporting, and ...