Introducing… The Threat Hunter’s Cookbook!

Welcome, Chefs! Today we are excited to announce the release of The Threat Hunter’s Cookbook: a practitioner’s guide to learning, expanding, and applying your analysis repertoire for threat hunting. In this kitchen, our main ingredient is data!

Take the Next Step in Your Threat Hunting Journey

Based on the work of dozens of experts across Splunk, and written by the co-creators of The PEAK Threat Hunting Framework, this book is meant to help you take the next step in your threat hunting journey by addressing the black box of the ‘analysis’ step in your workflow. The book organizes and provides transparency to threat hunting methods — like “searching and filtering,” “sorting and stacking,” “clustering,” “grouping,” and more — through a fun, cookbook-style publication, ripe with cooking metaphors, Chef’s Pro Tips, and (hunting) recipes!

With so many ways to kick off a hunt, it can be hard to select the best approach. And even if you have tried-and-true ways for hunting, this can ultimately cap the ceiling of your potential results — and limit the chance to select the best approach for the hunt.

In addition to providing an organization and overview of the top hunting methods, The Threat Hunter's Cookbook features built-in guides, which tie back to our PEAK terminology, to help you select the optimal approach for every hunt.

From there, we offer specific recipes that take on a problem-solution-discussion format to help you learn, apply, and understand the fundamentals needed to become an SPL master chef.

Get Your Copy of The Threat Hunter’s Cookbook

As we’ve learned from PEAK (winner of the 2024 SANS Difference Makers award for Innovation of the Year), hunting is key to driving the continuous improvement of your knowledge, and in turn, your security. More creative and effective hunting is the way to accelerate and optimize this process — so don’t wait any longer, let’s get cooking!

To get started, download a copy of The Threat Hunter’s Cookbook, and if you can, join us at one of our special Cookbook events! We’ll be:

• Signing limited-edition hard copies of the book at Black Hat on Wednesday, August 6 from 4:30 - 5:30 p.m. PT at the Splunk Booth (#3046) and from 6:30 - 9:30 p.m. PT at the Splunk AfterParty at Allegiant Stadium.
• Talking more about our motivation for writing this book and how you can leverage it as a resource during a live webinar on August 27 and a breakout session at .conf25.

Bon appétit, and happy hunting!