Tag: SURGe
Latest Articles
November Spawned an Osquery
This blogs reviews how to hunt through osquery logs
I Azure You, This Will Be Useful
This blog post describes how to use Azure Active directory for basic hunting and discovery
The Future is Cloudy with a Chance of Microsoft Office 365
This blog reviews the data that comes out of Office365 and how to use it to hunt in Splunk.
I Have a Fever, and the Only Cure for It Is More Feedback
A how-to on providing feedback from hunting into security operations
Being Your Own Detective with SA-Investigator
This post of the Back to Basics Hunting series with Splunk discusses how to use the new SA-Investigator add-on for Enterprise Security to dig deep into your datamodels and find the evil lurking within.
Tall Tales of Hunting with TLS/SSL Certificates
TLS and SSL certificates are a great way to hunt advanced adversaries. Collect them with Splunk Stream, Bro, or Suricata and hunt in your own data!
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
