Security Blogs
Latest Articles
Staff Picks for Splunk Security Reading January 2019 | Splunk
A selection of presentations, white papers and blog posts you might have missed in January 2019, handpicked from the Splunk security world.
Great (Endpoint) Moments with Mr. Lincoln
A look at speedy hunting techniques through Microsoft Sysmon data with Splunk
| datamodel Endpoint
Discover what's new in Splunk Common Information Model (CIM) 4.12
Using Automation to Defend Against the Emotet APT at McGraw-Hill Education
McGraw-Hill Education details how they use the Splunk Phantom SOAR platform to defend against the Emotet APT
ATT&CK-ing the Adversary: Episode 1 - A New Hope
This blog is the first in a three part series and introduces MITRE ATT&CK and how it can be used in threat hunting
I Do Not Like Your Ransom Scam. I Do Not Like It, SamSam I Am.
Find out how Splunk Enterprise Security Content Updates can protect you from the SamSam ransomware.
Staff Picks for Splunk Security Reading December 2018
A selection of presentations, white papers and blog posts you might have missed in this month (or before), handpicked from the Splunk security world
Using Splunk User Behavior Analytics (UBA) to Detect Malicious PowerShell Activity
Powershell attacks are on the rise and pose a major threat to enterprises. Find out how to use Splunk User Behavior Analytics (UBA) to detect malicious Powershell activity.
Get More Flexibility and Accelerated Searches with the New Endpoint Data Model
November's Splunk Enterprise Security Content Update (ESCU) releases included some powerful updates, adapting searches to leverage the new Endpoint Data Model
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
