Splunk Tech Talks
Deep-dives for technical practitioners.

Mastering Threat Hunting

WhitneySink
Splunk Employee
Splunk Employee

Watch an insightful talk where we dive into the world of threat hunting, exploring the key differences between indicator-based and behavior-based approaches.

Screenshot 2024-10-25 at 8.42.48 AM.png

We'll break down the fundamental concepts behind each method, highlighting their strengths and use cases. Additionally, we'll showcase how you can leverage the power of Recorded Future's threat intelligence within Splunk to execute both indicator and behavior-based threat hunts. Whether you're refining your threat detection strategies or just starting your journey, this session will equip you with practical insights and hands-on techniques to enhance your security operations.

Watch this Tech Talk to learn…

  • Approaches to Threat Detection and Threat Hunting
  • How to identify potentially malicious activity in your own logs that you may have otherwise missed
  • How to mature your SOC practices

Watch Full Tech Talk here:

(view in My Videos)

Tags (1)
Contributors
Get Updates on the Splunk Community!

From Data to Insight: Announcing the Winners of the Splunk Dashboard Contest

Hi Splunkers, First off, thank you to everyone who participated in our very first From Data to Insight: The ...

Splunk Developers: Construct Your Future at the .conf26 Builder Bar

Calling all Splunk architects, platform admins, and app developers: the site is open, and the blueprints are ...

Quick connection discovery mode for forwarders

When a Splunk forwarder loses connectivity to its indexers, it does not always reconnect immediately. In many ...