%term

Splunk Cloud Monitoring Console on Mobile (in 60s)

Jul 30, 2021 By Splunk In Splunk

The Cloud Monitoring Console (CMC) lets Splunk Cloud administrators view information about the status and performance of their Splunk Cloud deployment at a glance. On Splunk Mobile, you can access many of the same CMC dashboards as on Splunk Web. Whether you’re interested about your users, indexes, searches, or ingest volume, you can access this data on the go or at the comfort of your own couch.

View Video

Splunk

Read more about Splunk Cloud Monitoring Console on Mobile (in 60s)

Splunk On-Call prevents and cuts downtime episode length by half

Jul 30, 2021 By Splunk In Splunk

Your Answer: Escalate the right alerts to the right on-call people for fast collaboration and issue resolution with Splunk On-Call. Reduce burn-out and make on-call suck less with a complete ChatOps experience that's integrated with your IT stack and incident reporting.

View Video

Splunk

Read more about Splunk On-Call prevents and cuts downtime episode length by half

How to Maximize the Performance of Your Kubernetes Deployment

Jul 30, 2021 By Johnathan Campos In Splunk

With Kubernetes emerging as a strong choice for container orchestration for many organizations, monitoring in Kubernetes environments is essential to application performance. Poor application/infrastructure performance impact in the era of cloud computing, as-a-service delivery models is more significant than ever. How many of us today have more than two rideshare apps or more than three food delivery apps?

Read Post

Splunk

Read more about How to Maximize the Performance of Your Kubernetes Deployment

Conti Threat Research Update and Detections

Jul 30, 2021 By Splunk Threat Research Team In Splunk

The Splunk Threat Research team has researched two of the current payloads involved in these heinous campaigns against healthcare and first responder organizations such as Conti & REvil. In the first blog, we explored the REvil ransomware group and in this blog, we will explore Conti.

Read Post

Splunk

Read more about Conti Threat Research Update and Detections

Splunk SOAR Feature Video: Install/Update Apps

Jul 27, 2021 By Splunk In Splunk

A common task on the Splunk SOAR platform is installing a new app, or updating existing apps. Apps extend the Splunk SOAR platform by integrating third-party security products and tools. We currently offer more than 350 premade apps that are accessible right now.

View Video

Splunk

Read more about Splunk SOAR Feature Video: Install/Update Apps

Detecting SeriousSAM CVE-2021-36934 With Splunk

Jul 27, 2021 By Splunk Threat Research Team In Splunk

SeriousSAM or CVE-2021-36934 is a Privilege Escalation Vulnerability, which allows overly permissive Access Control Lists (ACLs) that provide low privileged users read access to privileged system files including the Security Accounts Manager (SAM) database. The SAM database stores users' encrypted passwords in a Windows system. According to the Microsoft advisory, this issue affects Windows 10 1809 and above as well as certain versions of Server 2019.

Read Post

Splunk

Read more about Detecting SeriousSAM CVE-2021-36934 With Splunk

Splunk SOAR Feature Video: Custom Functions

Jul 27, 2021 By Splunk In Splunk

Splunk SOAR’s custom functions allow shareable custom code across playbooks and the introduction of complex data objects into the playbook execution path. These aren’t just out-of the-box playbooks, but out-of-the-box custom blocks that save you time and effort. This allows for centralized code management and version control of custom functions providing the building blocks for scaling your automation, even to those without coding capabilities.

View Video

Splunk

Read more about Splunk SOAR Feature Video: Custom Functions

Splunk SOAR Feature Video: Contextual Action Launch

Jul 27, 2021 By Splunk In Splunk

Splunk SOAR apps have a parameter for action inputs and outputs called "contains". These are used to enable contextual actions in the Splunk SOAR user interface. A common example is the contains type "ip". This is a powerful feature that the platform provides, as it allows the user to chain the output of one action as input to another.

View Video

Splunk

Read more about Splunk SOAR Feature Video: Contextual Action Launch

Splunk SOAR Feature Video: Investigation Command Line

Jul 27, 2021 By Splunk In Splunk

When you're on the Splunk SOAR investigation page, there are several ways to run actions. One of the easiest ones is to use the command line, down where you would write comments in the event. If you start off with a slash (/) you get prompting for the action you would like to choose.

View Video

Splunk

Read more about Splunk SOAR Feature Video: Investigation Command Line

Splunk SOAR Feature Video: Create a Manual Event

Jul 27, 2021 By Splunk In Splunk

If you haven’t done anything on your Splunk SOAR instance yet you'll see zeros across the top in what we call the ROI summary. So how do you get started creating events in Splunk SOAR?

View Video

Splunk

Read more about Splunk SOAR Feature Video: Create a Manual Event

Operations | Monitoring | ITSM | DevOps | Cloud

Splunk Cloud Monitoring Console on Mobile (in 60s)

Splunk On-Call prevents and cuts downtime episode length by half

How to Maximize the Performance of Your Kubernetes Deployment

Conti Threat Research Update and Detections

Splunk SOAR Feature Video: Install/Update Apps

Detecting SeriousSAM CVE-2021-36934 With Splunk

Splunk SOAR Feature Video: Custom Functions

Splunk SOAR Feature Video: Contextual Action Launch

Splunk SOAR Feature Video: Investigation Command Line

Splunk SOAR Feature Video: Create a Manual Event

Monthly Archive

Follow Us