Leadership
3 Min Read
Splunk's CISO Report explores the gaps between CISOs and their boards, and shares best practices to help CISOs reach across the aisle.
Featured Articles
The Imperative of Cyber Resilience: Shaping a Secure Future for Public and Private Sectors
Frank Dimina breaks down the evolving threat landscape and what organizations can do to stay ahead.
Dashboard Studio: Your Dashboards, Now Guest-Friendly
Learn how to share your Studio dashboards with the Publish Dashboard feature.
Exploring AI for Vulnerability Investigation and Prioritisation
Splunker James Hodgkinson explains how AI-driven tools can revolutionize vulnerability investigation and prioritization.
Post-Race Analysis: How Splunk and McLaren Drove Data at Cisco Live
Splunk offered Cisco Live attendees a chance to experience the adrenaline rush of racing at the renowned Zandvoort circuit with a thrilling demonstration of our McLaren partnership.
Embracing Flexibility to Do Great Work
Work in the ways that work for you. Learn how Splunkers define flexibility, and how they work with their teams to make the best work happen.
Learn SPL Command Types: Efficient Search Execution Order and How to Investigate Them
When performing searches, Splunk uses its own language, SPL (Search Processing Language). In this article, we will explain each type of SPL and show you the efficient order in which to run searches and how to use the Search Job Inspector, an investigative tool.
Security
Sinister SQL Queries and How to Catch Them
Discover comprehensive strategies for detecting and mitigating SQL Server attacks.
Infostealer Campaign against ISPs
The Splunk Threat Research Team observed actors performing minimal intrusive operations to avoid detection, with the exception of artifacts created by accounts already compromised.
SNARE: The Hunters Guide to Documentation
Discover the SNARE framework for effective threat hunting documentation.
Security Staff Picks To Read This Month, Handpicked by Splunk Experts
Every month, our Splunk staff of security experts share their favorite reads of the month — this way, you can follow the most interesting, news-worthy, and innovative stories coming from the wide world of cybersecurity.
Hey SDDL SDDL: Breaking Down Windows Security One ACE at a Time
Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.
Learn
SIEM: Security Information & Event Management Explained
SIEM is a cybersecurity game-changer, especially for large organizations. Learn key SIEM features and functions & how to choose the right SIEM tool.
IT and Technology Spending & Budgets for 2025: Trends & Forecasts
Tech & IT spending is on the rise in 2025 across the globe. Read more on investment trends and see which regions will spend the most.
What Are SLMs? Small Language Models, Explained
Large language models have changed the world. What about small language models? Learn what SLMs are, how they differ from LLMs, and why SLMs are the future.
Telemetry 101: An Introduction To Telemetry
Telemetry is powerful data that can tell you all sorts of important information. Know what you can do with this useful data — get the full telemetry 101 here.
What are SaaS, PaaS, & IaaS?
Yes, the cloud makes work better. But which cloud model is right for you? Understand how SaaS, PaaS, and IaaS works in this ultimate guide.
What is Observability? An Introduction
In this blog post, we'll look at definitions, best practices, and key concepts around Observability in IT.
Latest Articles
What's new in Splunk DSDL 5.2: LLM-RAG functionalities and use cases
In this version 5.2 release of Splunk DSDL, we introduce new functionalities utilizing retrieval-augmented generation with local large language models and a vector database. In this blog, we provide an overview of various use cases supported through a set of DSDL commands and dashboards.
Splunk and the Cisco Store demonstrate the power of digital resilience at NRF 2025
Discover how Splunk and the Cisco Store showcase digital resilience at NRF 2025, featuring cutting-edge retail technologies like AI chatbots, Meraki Video, and real-time data analytics. Learn about personalized customer experiences and the importance of innovation and security in the evolving retail landscape.
Logs Are for Campfires: Splunk’s Asset and Risk Intelligence Leaves No Vulnerability Undiscovered!
Splunk's Asset and Risk Intelligence enhances security by uncovering hidden vulnerabilities, prioritizing critical threats, and offering dynamic risk scoring for proactive risk mitigation and compliance.
Cloud SOAR Achieves IRAP Assessment Along With Enterprise Security 8.0, DMX Edge Processor & Federated Search S3
We are delighted to announce that our Cloud SOAR solution has successfully completed the IRAP assessment.
Security Intelligence: An Introduction
Learn how security intelligence uses real-time data, AI, and machine learning to anticipate, detect, and respond to evolving cybersecurity threats effectively.
Matching AI Strengths to Blue Team Needs
Discover how AI and Large Language Models (LLMs) enhance cybersecurity operations for Blue Teams.
The Power of Partnerships Between CISOs and Their Boards
Splunk's CISO Report explores the gaps between CISOs and their boards, and shares best practices to help CISOs reach across the aisle.
What’s CTF? Capture The Flag Competitions for Cybersecurity
Capture the flag, but for security! Yes, the game you know from childhood is an important cybersecurity practice across the world. Learn more here.
What Is Disinformation Security?
Disinformation security is an emerging technology, coined by Gartner, that is a specific approach to understanding and detecting disinformation of all types.
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
Connect with Splunk on Instagram
Follow @Splunk
