Jose Enrique Hernandez

Currently, Jose Enrique Hernandez is the Director of Threat Research at Splunk (STRT). Previously Jose is co-founded Zenedge acquired by Oracle. Jose is known for creating several security-related projects, including: Splunk Attack Range, Splunk Security Content, Git-Wild-Hunt, Melting-Cobalt, and BlackCert projects. He also works as a maintainer to security industry critical repositories such as Atomic Red Team and lolbas-project.github.io.

Leadership 4 Min Read

2024 Predictions: AI Innovation Meets Digital Resilience

Splunk’s 2024 Predictions features three editions – Executive, Security and Observability – sharing insights and strategies for the era of AI.

Learn 4 Min Read

Conway’s Law Explained

In business, Conway's Law says: your business outcomes will be a direct reflection of your company's internal structure — good or bad. Read more here.

Security 6 Min Read

Detecting Dubious Domains with Levenshtein, Shannon & URL Toolbox

Got some parsed fields that you're ready to analyze... possibly for threat hunting? We'll use Levenshtein, Shannon & URL Toolbox to show you how!

Security 10 Min Read

Take a SIP: A Refreshing Look at Subject Interface Packages

Splunker Michael Haag dives into Subject Interface Packages (SIPs) and their role in Windows security, exploring how SIPs can be exploited by malicious actors to bypass security measures and sign malicious code.

Security 3 Min Read

Parsing Domains with URL Toolbox (Just Like House Slytherin)

One of the most popular Splunk security apps of all time, URL Toolbox’s URL parsing capabilities have been leveraged by thousands. Full story here.

Security 2 Min Read

CIO Roundtable: Harnessing GenAI for Resilient Security and Observability – Insights and Strategies

Get insights from a recent roundtable discussion in collaboration with CIO magazine. The talk focused on the dual challenge faced by IT and security managers: mitigating risks associated with AI while leveraging AI to enhance organizational capability.

Security 3 Min Read

Splunk SOAR 6.2 Introduces New Automation Features, Workload Migration, and Firewall Integrations

Announcing the release of Splunk SOAR 6.2 with features like logic loops for playbooks, integrations with CyberArk, two new firewall apps, and a new conversion option for classic playbooks.

Learn 7 Min Read

Metrics to Monitor for AWS (ELB) Elastic Load Balancing

In this blog post, we'll take a look at metrics to monitor for AWS Elastic Load Balancing.

Leadership 2 Min Read

How can Europe’s Public Sector become more digitally resilient?

Challenges of a pandemic, conflict and various economic shocks have forced us all to adapt very quickly. Updating our understanding of what digital resilience is, is a critical priority to ensure that the security, reliability and certainty of service delivery is to be preserved.