Splunking with Sysmon Part 4: Detecting Trickbot
Trickbot and Ryuk With the recent outbreak of Ryuk [...]
A comprehensive checklist for windows hardening
What is hardening? Hardening involves reducing risk through the [...]
Using Splunk Streamstats to Calculate Alert Volume
Dynamic thresholding using standard deviation is a common method [...]
Splunking with Sysmon Part 3: Detecting PsExec in your Environment
PsExec is another powerful tool created by Windows Sysinternal. [...]
Your Splunk Guide for Smooth Sailing with CEF Field Extractions
One of the more common log formats you’ll run [...]
A Design with Humans in Mind: Adding Automation and Color Coding to the IT Workflow
Workflow is an essential part of a daily routine, from [...]
Using Splunk Enterprise Security to Look for Zerologon Exploit Attempts
A while back, Zerologon came along and helped everyone [...]
Day in the Life of a Data Junkie
As a Splunk administrator, I often find my first [...]
Splunk and security training resources develop your IT skill set
Company culture is something that’s unique to each business. [...]
How Splunk Add-Ons Help You Stop Playing Hide and Seek with Your Logs
Do you like to play games? How about hide [...]