Splunk can feel like several products at once: a search language, a data platform, an operations console, a security analytics engine, and an administration discipline. This repository connects those ...
This project shows how I used Splunk Enterprise 10.4 and Microsoft Sysmon to analyze Windows process creation events using Sysmon Event ID 1. The purpose of this lab was to gain hands-on experience ...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to secure their systems by Sunday against a critical Splunk Enterprise vulnerability that is being exploited ...
CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution. A critical Splunk Enterprise vulnerability is being exploited ...