Splunk Archives

Hot Topics

Introducing Goffloader: A Pure Go Implementation of an In-Memory COFFLoader and PE Loader
The Role of Digital Adoption in Email Deliverability & Security
Demystifying SOC 2 Compliance for Startups: A Simple Guide
Happy Canada Labour Day! / Bonne Fête du Travail Canadienne!
Happy United States Labor Day 2024 / Feliz Fin de Semana del Día del Trabajo de Estados Unidos 2024 / Joyeux Fin de Semaine de la Fête du Travail aux États-Unis 2024

5 Ways Contrast Security ADR Closes the Cybersecurity Gap for Applications and APIs | Contrast Security

Lisa Vaas, Senior Content Marketing Manager, Contrast Security | August 26, 2024 | API security, AppSec, Security Observability, SIEM, SOC, Splunk, telemetry

Gazing into your security operations center (SOC) platform, what do you see? ...

AppSec Observer

Demystifying Okta Attacks with Dorothy and Splunk

Trenton Tait | June 19, 2024 | detection-engineering, Okta, Splunk, Threat Hunting

https://github.com/elastic/dorothyOverviewOkta is a leading identity and access management (IAM) platform designed to help organizations securely manage and streamline user authentication and authorization. It provides a comprehensive suite of services, including single sign-on ...

SnapAttack - Medium

LLMs, security, risk, Google AI LLM vulnerability

Cisco Extends Cybersecurity Portfolio with Help from AI

Michael Vizard | June 7, 2024 | cisco, cisco ftd, cloud control, cloud controls, firewall, GenAI, Splunk

Cisco plans to embed AI capabilities into its Firewall Threat Defense (FTD) software and Cisco Security Cloud ...

Security Boulevard

Unlock SaaS Security Intelligence with Splunk and Obsidian

Lila Joy Ginsberg | January 19, 2024 | obsidian security, Product Spotlights, SaaS Security, Security Intelligence, Splunk, Splunk Integration

In a world of evolving SaaS security threats, organizations require advanced threat detection and response capabilities. Obsidian’s integration with Splunk provides just that–empowering security teams to effectively address SaaS security threats. Splunk ...

Obsidian Security

Is Cisco’s Acquisition of Splunk a Shade of Brilliance or Madness?

John P. Gormally, SR | October 16, 2023 | AI, Artificial Intelligence, cisco, Cybersecurity, Splunk

Is Cisco’s Acquisition of Splunk a Shade of Brilliance or Madness?3 min read·Just now--Acquiring companies in the tech space is more about defining the future and less about solving the current threats ...

Stories by John P. Gormally, SR on Medium

Cisco’s Acquisition of Splunk: What Does It Mean for Splunk SOAR Users?

Shriram Sharma | September 21, 2023 | cisco, SBN News, Smart SOAR, SOAR, Splunk, Vendor-Agnostic SOAR

In a headline-grabbing announcement that’s got the cybersecurity industry talking, Cisco has revealed its intention to acquire Splunk for an astonishing $28 billion. That’s right, the tech giant is making moves to ...

D3 Security

Event Field mapping for Splunk Events in Smart SOAR

Why Smart SOAR is the Best Independent SOAR for Splunk Enterprise Security

Pierre Noujeim | August 18, 2023 | Advanced Searching, data enrichment, Data Ingestion, Incident Response, Integration Guide, Platform Synchronization, Security Alerts, Security Tools, Smart SOAR, SOAR, Splunk, Splunk Enterprise Security, Splunk Integration

Connecting Splunk SIEM with other security tools is a scenario Smart SOAR handles often. By ingesting alerts from Splunk into Smart SOAR, and using the integration commands in event and incident playbooks, ...

D3 Security

BOTS SOC Open Systems Palo Alto Kaspersky zScaler

Boss of the SOC: Capture-the-Flag as a Recruitment Tool

Sue Poremba | August 9, 2023 | .conf, Bots, bug bounty, Capture the Flag, Cybersecurity Training, Splunk

Splunk's Boss of the SOC (BOTS) exercise helps cybersecurity pros show off skills and also serves as a valuable recruiting tool ...

Security Boulevard

SPL Tricks: Dealing with Nested Name-Value Pairs in JSON

Hurricane Labs | July 19, 2023 | Infosec Blog, Splunk

JSON is a fantastic logging format and Splunk has built in support for it. However, when dealing with JSON logs, there’s a certain field structure that can be a little tricky to ...

Hurricane Labs

DTEX and Splunk - A Powerful Push Integration

DTEX integrations for Insider Risk Management: Splunk and CrowdStrike

Brian Stoner | April 18, 2023 | CrowdStrike, dtex intercept, Dtex Systems, Insider Risk Management, integrations, Microsoft, partner, Splunk

Integrations are critical for efficient and effective insider risk management. This might sound like a simple statement, but there is a lot that goes into it. No cybersecurity tool today can operate ...

DTEX Systems Inc