Splunk Enterprise Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Where I can find Interactive dashboard example for SOC/NOC ?

ajitshukla
Explorer
‎01-23-2019 05:07 AM

I have seen splunk dashboard example but not find to interactive for my case.please suggest me some good example for SOC .

0 Karma
Reply

woodcock
Esteemed Legend
‎01-28-2019 03:11 PM

Check out these apps, which leverage various CIM datamodels:
https://splunkbase.splunk.com/apps/#/author/dshpritz

Also check out these:
Security Essentials: https://splunkbase.splunk.com/app/3435/
Security Essentials for Ransomware: https://splunkbase.splunk.com/app/3593/
Security Essentials for Fraud: https://splunkbase.splunk.com/app/3693/
Splunk ES Content Update: https://splunkbase.splunk.com/app/3449/

0 Karma
Reply

lakshman239
Influencer
‎01-28-2019 02:12 PM

I think you can build an interactive dashboard using glass tables with a network or service view based on your need. I don't think there is any out of box view for SOC/NOC, apart from the Security Posture and Incident review dashboard in Splunk Enterprise Security.

0 Karma
Reply
Get Updates on the Splunk Community!

Combine Multiline Logs into a Single Event with SOCK - a Guide for Advanced Users

This article is the continuation of the “Combine multiline logs into a single event with SOCK - a step-by-step ...

Everything Community at .conf24!

You may have seen mention of the .conf Community Zone 'round these parts and found yourself wondering what ...

Index This | I’m short for "configuration file.” What am I?

May 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with a Special ...