...an use to enrich their existing threat information on a particular indicator.
I have done some R&D on Splunk and found out that theSplunk Enterprise is the top-level platform where as Splunk E...
Hello, I have a distributed Splunk architecture with a single search head, two indexers, and management tier : License Master, Monitoring Console, and Deployment Server, in addition to the f...
Hi,
I have installed a splunk enterprise trial and also requested Splunk Enterprise Security. I noticed that when I try a simple search "fail* password" in both platform, the fields that a...
...f ram. Is Splunk ES 2.4 even supported on this hardware platform?
Fyi, i did install the aforementioned, but my laptop started to shutdown (hard) intermittently and abruptly. At times, staying o...
Deployment: on premise, distributed
SplunkPlatform version : 7.2.6
Enterprise Security version : 5.3.0
Hello,
We are trying to refine the roles to be granted to our SOC team based on a "l...
We recently emailed Splunk with some questions regarding the integration of Splunk Enterprise Security App into a ticketing system. Since the notable event assignment and tracking within the ES a...
...n how to take action
Still have questions?
*If related to these advisories, you can comment below!
*If related to securing your Splunk instance, you can post a new question on this b...
Hello Splunk team, I have two doubts please help me with details,
1. We are using Splunk cloud platform for Enterprise security. Is there any way to know the time span of buckets for how m...
Are there any future plans to make this app CIM compliant? We are using the Enterprise Security app which requires all logs to be CIM compliant in order to take full advantage of the ES app.
Need to pull the logs from the Cisco Cloud Web Security storage architecture using splunk
Cisco ScanCenter allows you to extract your data logs from the Cisco Cloud Web Security storage a...