Solved: What is the best way to learn and practice advance...

pp1231234 · ‎07-30-2018

Please suggest a good way to learn and practice advanced searches in Splunk.

sudosplunk · ‎07-30-2018

If you're looking for free education, you can refer to splunk docs for definitions of commands and practice them yourself.

Or there is an amazing Advanced Search and Reporting with Splunk course offered by splunk. Coursework is really good and you will get to do labs. More info here: https://www.splunk.com/view/SP-CAAAH3M

PS: I think others may have more good resources.

View solution in original post

adauria_splunk · ‎08-01-2018

You can also check out these apps:

https://splunkbase.splunk.com/app/3020/

https://splunkbase.splunk.com/app/3353/

And, for security skills:

https://splunkbase.splunk.com/app/3435/

sudosplunk · ‎07-30-2018

If you're looking for free education, you can refer to splunk docs for definitions of commands and practice them yourself.

Or there is an amazing Advanced Search and Reporting with Splunk course offered by splunk. Coursework is really good and you will get to do labs. More info here: https://www.splunk.com/view/SP-CAAAH3M

PS: I think others may have more good resources.

What is the best way to learn and practice advanced splunk searches?

Enterprise Security Content Update (ESCU) | New Releases

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

Index This | What are the 12 Days of Splunk-mas?