Splunk Security Investigations, Part 3: Scoping
Welcome to the Splunk for Security Investigation Experience. In this third video, we continue our investigation and use visual drill downs to examine specific activities between targeted hosts and compromised workstations. Watch the video, then try it yourself by following these instructions with this online Splunk instance pre-loaded with security data. Already using Splunk? Download the Getting Started with Splunk Security App, to get demo data and follow along with the scenarios.
Видео Splunk Security Investigations, Part 3: Scoping канала Splunk
Видео Splunk Security Investigations, Part 3: Scoping канала Splunk
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Splunk for Security Investigation: Endpoint Advanced Malware Analysis
Splunk for Security Investigation: Command and Control Analysis
SOC 101: Real-time Incident Response Walkthrough
"Splunk Enterprise 6 Basic Search"
Splunk Security Investigations, Part 2: Threat Validation
ArcSight Investigate Demo - How to investigate a suspicious URL
Splunk Tutorials : SQL Injection Detection
Splunk Education: Creating Alerts
Splunk for Security Investigation: Ransomware
Use Case : Detecting Network and Port Scanning
Splunk CIM (PART-3) : How to validate CIM compatibility and generate report
How to Detect Insider Threats
Finding the Right Security Content with Splunk Security Essentials
Using Splunk Internal Indexes to Audit Security, Users, Searches and more.
Splunk Security Investigations, Part 1: Threat Detection
Grey's Academy 101: Getting Started with Splunk
Log Analysis with Splunk | How to use Splunk to analyse a Real time Log | Splunk Use Cases | Edureka
Implementing MITRE ATT&CK into a SOC
Splunk: How to Prevent Insider Threats