Event Analysis and Logs Parsing with Splunk | TryHackMe Fixit
We discussed Splunk configuration files namely, props.conf,transforms.conf,fields.conf,inputs.conf, indexes.conf and mentioned the purpose and goal of each one…
splunk
Collecting and Analyzing Web Server Logs with Splunk | TryHackMe Splunk: Setting up a SOC Lab
We explained the process of installing and configuring Splunk by showing the steps that involve choosing the…
Splunk Search Processing Language | TryHackMe Splunk: Exploring SPL
We covered an introduction to Splunk Search Processing Language (SPL) and discussed the basic commandsand various types…
Cyber Incident Response with Splunk | TryHackMe Incident Handling with Splunk
We covered responding to cyber incident using Splunk to analyze the related events and uncover the attack…
Splunk SIEM Basics For Beginners | TryHackMe Splunk: Basics
Introduction to Splunk We covered the basic fundamentals of Splunk for beginners. We explored data collection through…
Cyber Incident Investigation with Splunk | TryHackMe Investigating with Splunk
Introduction We covered investigating a cyber incident with splunk. We investigated the events generated on compromised windows…
Investigate an Infected Machine with Splunk | TryHackMe Benign
Introduction We covered investigating an infected windows machine using Splunk. We investigated Windows event logs and specifically…
Ransomware Investigation with Splunk | TryHackMe PS Eclipse
Introduction We used Splunk to investigate the ransomware activity on a Windows machine. The ransomware was downloaded…
Investigating Conti Ransomware on Microsoft Exchange with Splunk | TryHackMe
In this post, we investigated the Conti ransomware that hit Microsoft Exchange via a series of vulnerabilities….
Active Directory Privilege Escalation Through SeBackupPrivilege | TryHackMe Razor Black
Introduction In this video walkthrough, we covered Active Directory penetration testing and Privilege Escalation through techniques such…
Investigating Compromised Machines with Splunk | TryHackMe Splunk3
Introduction In this video walkthrough, we covered investigating a compromised endpoint by going over the malicious events….
Investigating FTP with Splunk | TryHackMe Boss of the SOC v2
Overview: Focus areas include spear-phishing campaigns, encrypted traffic, unusual files, metadata analysis, and persistence mechanisms. The task…
USB Attacks Investigation with Splunk | TryHackMe Splunk 2 Boss of the SOC v2
Premise In this video walkthrough, we covered investigating malware / ransomware usb attacks with splunk to unleash…
How to use Splunk to Detect Web Application Attacks in Cyber Security | TryHackMe Splunk 2
Introduction In this post, we covered part 2 of using Splunk in a security operation center. We…
Web Activity Investigation with Splunk | TryHackMe Splunk 2 Boss of the SOC V2
Premise In this video walkthrough, we covered how to investigate web activity for users with Splunk. TryHackMe…
Investigating Cerber Ransomware with Splunk | TryHackMe Boss of the SOC V1
Premise The video is a technical walkthrough focused on using Splunk to investigate a ransomware attack scenario….
Hunting Advanced Persistent Threat APT with Splunk | TryHackMe Boss of the SOC V1
Premise In this video walkthrough, we covered how to hunt and identify advanced persistent threat with Splunk…
Introduction to Splunk For Cyber Security | TryHackMe Splunk 101
Premise: In this video walkthrough, we covered the basic functions in Splunk such as the apps and…
