Security

Security

Splunk SOAR Playbooks: GCP Unusual Service Account Usage

In this new Splunk SOAR Playbook, we'll show how a Splunk Enterprise search can trigger automated enrichment, an analyst prompt, and rapid response actions to prevent damage caused by malicious account access.

Read Full Story
Security

Super Speed with Phantom Slash Commands

Splunker Olivia Courtney shares a walkthrough of what you can do with the power of Phantom Slash Commands to investigate Splunk Phantom events.

Read Full Story
Security

Detecting Password Spraying Attacks: Threat Research Release May 2021

The Splunk Threat Research team walks you through a new analytic story to help SOC analysts detect adversaries executing password spraying attacks, and highlights a few detections from the May 2021 releases.

Read Full Story
Security

Tales of a Principal Threat Intelligence Analyst

Discover how threat intelligence can offer valuable insights to help fend off future attacks, no matter how covert or cunning they appear to be.

Read Full Story
Security

EO, EO, It’s Off to Work We Go! (Protecting Against the Threat of Ransomware with Splunk)

We read the 'What We Urge You To Do To Protect Against The Threat of Ransomware' memo and Executive Order (EO14028) in-depth, and this blog is designed to provide you with the information and takeaways to start acting immediately.

Read Full Story
Security

Understanding Splunk Phantom’s Join Logic

Have you ever built complex playbooks and tested them, only to find that they halted execution mid-stream? That’s probably because of your ‘join’ settings – read on to learn more.

Read Full Story
ALL TAGS

Security

Tips & Tricks Cloud DevOps IT Operations Observability Splunk Enterprise IT SignalFx .conf Public Sector Splunk Enterprise Security Customers Splunk Life Splunk Cloud Security Monitoring Orchestration & Automation (SOAR) Splunk4Good Security Analysis and Response Splunk Apps & Add Ons Machine Learning Security Infrastructure Monitoring Partners Leadership Machine Learning Toolkit SIEM Splunk Phantom Artificial Intelligence Machine Learning Developers Machine Data Open Source Cloud Monitoring Advanced Threat Detection Splunk Machine Learning Toolkit Risk Mitigation Splunk ITSI Internet of Things AWS Incident Response Splunk Answers Application Monitoring Community Women in Tech APAC AIOps video Security Solutions IT Service Monitoring Splunk UBA Security Analytics .conf & SplunkLive! Boss of the SOC Incident Investigation & Forensics Container Monitoring Cybersecurity Fraud Detection Security Research SOAR Internship Financial Services SplunkTrust Global Restart Compliance Server Monitoring IT Event Analytics webinar Higher Education Retail Ransomware IT App Analytics industry events University Recruiting IT Event Management Omnition EMEA Healthcare Data Age IT Service Intelligence Log Management Splunk APM Preventative Maintenance & Predictive Analytics Operational Intelligence Boss of the NOC Insider Threat IT Monitoring and Investigate Modern SOC Industrial Data Manufacturing Data Value Observability Suite Splunk Life ICS, OT and Industrial Security Communications Splunk Universal Forwarder Thought Leadership Internet of Things AMER Industry 4.0 SplunkLive podcast audio file Connected Experiences Industrial Monitoring and Diagnostics case study Pricing Splunk Insights for Infrastructure Adaptive Response Predictions Careers Industrial Asset Management whitepaper ebook Aerospace & Defense Diversity Equity & Inclusion Splunk On Call Veterans & Military Awards Nonprofit Energy & Utilities Splunk Light Splunk for Good Splunk AR Corporate Accenture Splunk Research Dark Data Splunk Insights Splunk VR Cisco Splunk Insights for Ransomware Splunk Insights for AWS Cloud Monitoring Splunk Industrial Asset Intelligence Events Employee Resource Groups Splunk TV Splunk App for Infrastructure Remote Work Insights Splunk Cloud Gateway Data Stream Processor Booz Allen Hamilton calculator Online Services
Show All Tags
Show Less Tags