SQL in Splunk: Here’s Everything You Need to Know
Let’s explore how to perform SQL-style functions in Splunk Processing Language (SPL). In this post, we’ll look at the most common SQL commands and map
Category: Splunk
The Splunkers Guide to Splunk 9.0
Splunk Enterprise version 9.0 was released on July 14, 2022 during Splunk .conf2022, offering a variety of new features and phasing a few old ones
The Beginners Guide to Splunk Monitors
Are you curious about using file and directory monitors to notice new data in log files and ingest those into Splunk? You’re in luck. In
What is Splunk’s SIEM?
What is Splunk’s SIEM? This post will examine Splunk Enterprise Security, Splunk’s SIEM Product. We’ll explore what SIEMs are and how Security Operation Centers use
A Beginner’s Guide to Splunk Logs
Splunk keeps various logs about the happenings of Splunk processes and the various components used. We’ll list the primary logs for Splunk Enterprise and where
A Comprehensive Guide to Splunk: The Powerful Data Platform
What is Splunk? Splunk is a big data software analytics platform that powers information technology (IT), security, and observability solutions. Splunk makes massive amounts of
How to Install Splunk on Linux (+Screenshots)
It is estimated that over 95% of the world’s servers run the Linux operating system. As such it’s no surprise that a majority of Splunk
What is the Splunk REST API?
The Splunk platform REST API provides the ability to create, read, update, or delete resources across the Splunk Enterprise platform. This capability can be leveraged
The Beginner’s Guide to Splunk server.conf File Configurations
Splunk Enterprise utilizes multiple configuration files to control which functional role(s) a given instance performs and to set a myriad of operating parameters that determine
Configure HTTP Event Collector in Splunk Web
In this post, we will discuss what the HTTP Event Collector (HEC) is, the benefits of using it, and how it works on Splunk Enterprise