Our blog

Onboarding Sunburst Threat Indicators into Splunk Enterprise Security

Using Splunk Statistical Commands: Eventstats and Streamstats by bitsIO

Properly onboarding threat indicators is critical to powering Splunk Enterprise Security for SUNBURST activity detection. This article provides tips to successfully:

  • set up threat intelligence downloads
  • check the creation of threat intelligence artifacts
  • ensure proper parsing of downloaded data

“Onboarding Threat Indicators into Splunk Enterprise Security: SolarWinds Continued” on splunk.com:

https://www.splunk.com/en_us/blog/security/smoothing-the-bumps-of-onboarding-threat-indicators-into-splunk-enterprise-security.html

Search Here

Latest Posts

Securing Your Splunk Implementation: A Checklist

Securing Your Splunk Implementation: A Checklist

22/06/2023
Secure Your Attack Surface With Node Zero By Horizon3

Secure Your Attack Surface With Node Zero By Horizon3

31/05/2023
Splunk best practices

7 Best Practices To Help You Get More From Your Splunk Implementation

23/05/2023

Categories

bitsIO (3) Corporate (32) education (3) General (6) Internet of Things (1) MSSP (3) RBA (1) Splunk (12) Tutorials (4) Uncategorized (1)

Tags

Applications aws bitsio cloud Covid19 guide learning linux Multifactor authentification RBA remote vpn Remote Work security Splunk splunkcommunity splunkusergroups terminal ubuntu Web WFH