In January, the Splunk Threat Research Team had one release of new security content via the Splunk ES Content Update (ESCU) app. In addition to new security content, this release introduces ESCU 5.0, which delivers several new exciting enhancements designed to help further security operations. Check out this post for more details!

A few months ago, we released Splunk Enterprise Security 8.0 for our cloud customers. Today, we are excited to announce that Splunk Enterprise Security 8.0 is available now for our on-premise customers!

In December, the Splunk Threat Research Team had one release of new security content via the Enterprise Security Content Update (ESCU) app. Check out this post for the full details!

Correct detection engineering is crucial to make sure your Splunk Enterprise Security instance is giving you full visibility on the threat events happening in your network. 

Some times we will find ourselves troubleshooting on why a detections wasn't triggered. Here is the first of a series of blogs talking about my own experience. 

In November, the Splunk Threat Research Team had one release of new security content via the Enterprise Security Content Update (ESCU) app. Check out this post for the full details!

In October, the Splunk Threat Research Team had one release of new security content via the Enterprise Security Content Update (ESCU) app. Check out this post for the full details!

In September, the Splunk Threat Research Team had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app. Check out this post for the full details!

In August, the Splunk Threat Research Team had 3 releases of new security content via the Enterprise Security Content Update (ESCU) app. Check out this post for the full details!

In July, the Splunk Threat Research Team had three releases of new security content via the Enterprise Security Content Update (ESCU) app. Read on for the details!

In June, the Splunk Threat Research Team had two releases of new security content via the Enterprise Security Content Update (ESCU) app. Read on for the details!

Last month, the Splunk Threat Research Team had two releases of new security content via the Enterprise Security Content Update (ESCU) app. Read on for the details!

We’re happy to share the release of Splunk App for PCI Compliance 5.3.1!

We’re happy to share the release of Splunk Security Essentials 3.8.0, which includes new and updated capabilities to help organizations mature their security programs even faster.

Last month, the Splunk Threat Research Team had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app. Read on for the details!

Last month, the Splunk Threat Research Team had 5 releases of new security content via the Enterprise Security Content Update (ESCU) app. Read on for the details!

In the last month, the Splunk Threat Research Team has had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app (v4.17.0 and v4.18.0). Read on for the details!

In our latest release of Splunk Enterprise Security 7.3, we are excited to introduce capabilities that deliver a refined analyst experience and enhanced risk context for seamless incident triage.

In the last month, the Splunk Threat Research Team (STRT) has had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app (v4.15.0 and v4.16.0). 

Our November updates from the Splunk Security Team are here. Updates include Splunk Threat Research Team updates, New Apps and Add-Ons, the latest for SURGe  and more.. 

Here are the latest webinars, workshops, events and more from the Splunk Public Sector Team!

Read for the latest news from the Splunk Threat Research Team.

Our latest updates from the Splunk Security Team include launches of Splunk Enterprise 7.2, Splunk Mission Control 3.0, New updates from Splunk Threat Research Team and more.. Check out all of our October News!

We’re happy to announce the release of Mission Control 3.0 which includes several new and exciting features made available to eligible Splunk Enterprise Security Cloud users.

We are excited to introduce capabilities that deliver an improved workflow experience for simplified investigations with Splunk Enterprise Security 7.2; enhanced visibility and reduced manual workload; and customized investigation workflows for faster decision-making.

In the last month, the Splunk Threat Research Team (STRT) has had 1 release of new security content via the Enterprise Security Content Update (ESCU) app (v4.12.0.). Read on for the details!

We’re happy to announce the release of Mission Control 2.3 which includes several new and exciting features made available to Splunk Enterprise Security Cloud users. Read on for the details!

Our latest updates from the Splunk Security Team include many new releases; SOAR, Splunk Enterprise Security and Splunk User Behavior Analytics! Check out all of our September News!

Learn about all of the security content developed from May - July 2023 from Principal Threat Researcher, Michael Haag.