Security Blogs

Security 1 Min Read

Playbook: Investigate IP Address Performing Reconnaissance Activity

Phantom can receive reconnaissance alerts and automate key investigation steps to increase efficiency and speed decision making.

Security 1 Min Read

Playbook Series: Trigger a Playbook from an IOC

Security 2 Min Read

8 reasons why you should splunk your backup solutions!

Security 2 Min Read

CVE-2015-7547: glibc: Detection with Splunk

Has your system been affected by the glibc vulnerability? This blog will give you the knowledge to figure out if you've been hit.

Security 4 Min Read

SSO without an Active Directory or LDAP provider

Security 3 Min Read

Playbook Series: Operationalizing Threat Intelligence

Security 2 Min Read

Playbook Series: Email-based Orchestration

Security 2 Min Read

Hackers are already in your environment – spot them with THOR and Splunk!

Security 4 Min Read

Random Words on Entropy and DNS

Security 3 Min Read

Detecting dynamic DNS domains in Splunk

While useful legitimately, hackers can use dynamic DNS domains to change IP address rapidly & exploit via malware-evil.duckdns[.]org; how to protect against?

Security 2 Min Read

Back from FiRST Berlin, discover CIRCL Passive SSL

Security 2 Min Read

Phishing – What does it look like in machine data?

Security 2 Min Read

Phishing hits a new level of quality

Security 2 Min Read

Duqu 2.0 – The cyber war continues on a new level

Security 2 Min Read

Monitoring and alerting for activities of expired user accounts

Security 3 Min Read

Using Splunk for Your Vulnerability Management

Security 3 Min Read

Contextualize your data with threat intelligence information from Project Honey Pot

Security 1 Min Read

Security Blogs

Latest Articles

Playbook: Investigate IP Address Performing Reconnaissance Activity

Playbook Series: Trigger a Playbook from an IOC

8 reasons why you should splunk your backup solutions!

CVE-2015-7547: glibc: Detection with Splunk

SSO without an Active Directory or LDAP provider

Playbook Series: Operationalizing Threat Intelligence

Playbook Series: Email-based Orchestration

Hackers are already in your environment – spot them with THOR and Splunk!

Random Words on Entropy and DNS

Detecting dynamic DNS domains in Splunk

Back from FiRST Berlin, discover CIRCL Passive SSL

Phishing – What does it look like in machine data?

Phishing hits a new level of quality

Duqu 2.0 – The cyber war continues on a new level

Monitoring and alerting for activities of expired user accounts

Using Splunk for Your Vulnerability Management

Contextualize your data with threat intelligence information from Project Honey Pot

Updated Keyword App

Subscribe to our blog

Connect with Splunk on X

Connect with Splunk on Instagram