Splunk Enterprise Security Blogs
Latest Articles
Defending Against Common Phishing Frameworks Kits with Splunk Enterprise Security Content Update
Discover how Splunk Enterprise Security Content Update (ESCU) can help you protect your network.
Monitor for, Investigate, and Respond to Phishing Payloads with Splunk Enterprise Security Content Update
Detect, investigate, and defend signs of phishing payloads in your environment with Splunk Enterprise Security Content Update (ESCU)
Defending Against Phishing Frameworks with Splunk Enterprise Security Content Updates
Attackers often use phishing framework kits to generate faux websites to trick unwitting users into visiting and/or giving up sensitive information.
Boss of the SOC (BOTS) Advanced APT Hunting Companion App: Now Available on Splunkbase
If you want to learn more about threat hunting with Splunk, this app in conjunction with the BOTSv2 data set is just the answer!
Threat Intel and Splunk Enterprise Security Part 2 - Adding Local Intel to Enterprise Security
Splunker John Stoner shares a walkthrough for how to add local threat intelligence into Splunk Enterprise Security
Service Providers Need More Than a SIEM
If you're a security-focused service provider, we've got good news for you – Splunk is more than just a SIEM solution.
Threat Intel and Splunk Enterprise Security Part 1 - What’s The Point of Threat Intel in ES?
Find out how threat intelligence works with Splunk Enterprise Security
Catching the Coldroot RAT
Detect signs of the Mac Coldroot RAT malware in your environment with Splunk Enterprise Security Content Update (ESCU)
Dear Buttercup: The Security Letters
A blog series answering the questions of customers around the world about Splunk security products like Splunk Enterprise Security, Splunk Phantom, Splunk ESCU, Spunk UBA and more
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
