Hi all, I am trying to setup some sort of dashboard to view a list of sudo commands by server. I started with the ITEssentialsLearn App which recommends this command: index=* s...
...ewman share how to build a strong foundation of security and resilience for your expansion to the cloud. Learn about the drivers and benefits that lead enterprises to build data-centric security a...
...ackground information: I have verified that the following steps work successfully if the $SPLUNK_DB variable is NOT set. In other words, it defaults to $SPLUNK_HOME/var/lib/splunk s...
I answered several times, but there are several similar questions.
What are your most frequently asked questions?
If you have your best answer, please provide a link.
I will study.
G'day,
Can someone please help me to understand how I can find the powershell commands (if any) an adversary has run on the system through Splunkdata? I have all the windows security and p...
I have a handful of searches that I want to build into reports and dashboards so I can collaborate with my team. Can you give me a sketch of how Splunk reports and dashboards work?
It's been a while since we implemented Splunk Enterprise, and user engagement has stalled a bit. We also have a lot of people who are new to Splunk. Do you have any recommendations for how we can e...
Hello all!
What should I do or what should I know, (maybe some tricks or magic) if I need to quickly rewrite my searches to correlation searches that will work with CIM Data Models? My SPL skills a...