Tags » Splunk

SIEM use cases development workflow - Agile all the things!

If you are into Splunk rules development, I am pretty sure this post will relate to you. But before entering the main topic, let me quickly define what a SIEM use case is about, which is another trendy, hot topic in the Infosec industry today. 740 more words

Analytics

Juniper SRX IDP (IDS/IPS) and SCREEN (DoS) Logs to Splunk

Juniper SRX IDP (IDS/IPS) and SCREEN (DoS) logs can be sent to a remote host via Syslog.

You might have come across IT security compliance requirements asking for visibility across your IDP and DoS attack event logs. 906 more words

Juniper

NetApp aims to assist organisations’ digital transformation

Fadi Kanafani, NetApp
At the 37th edition of GITEX Technology Week, NetApp is aiming to help customers with their quest for digital transformation.
The data management company has recently enhanced its Data Fabric, which is now fortified with new software releases such as NetApp SolidFire… 9 more words

Splunk Host Tags

Did you know you can tag a host in Splunk ?? I didn’t !! Do you know how much time tags would have saved me from having to craft a most excellent Splunk search to capture just the right hosts ?? 190 more words

Ansible

Splunk Universal Forwarder Setup

Inside of the Splunk server enable the Splunk listener on port 9997.

download the correct universal forwarder for your device. In this case I am using raspberry pi and used the arm version. 90 more words

Programming

Splunk is latest company to take exception to Larry Ellison's slams at Oracle OpenWorld

Larry Ellison was at it again yesterday, making friends, influencing people and pissing off rivals. It was AWS in the keynote earlier in the week. Yesterday, it was… 516 more words

TC

ADFS settings WebSSOLifetime and Token Lifetime, NotBeforeSkew

This post will try to explain some relevant parameters from the ADFS side. I’m not saying the defaults aren’t good, that’s something you’ve got to decide for yourself. 710 more words

Active Directory