Home » Tags

Splunk

Granting Splunk Access to System Logs on Linux

How to Give Splunk Access to Linux Logs

Don’t just give it root access! Process of onbaording Linux logs into Splunk using ACLs.

August 25, 2024 · 3 min · 464 words · Emlin
Splunk App vs Add-On - Whats the Difference

Splunk App vs Add-On - What's the Difference?

A guide to understanding the difference between a Splunk App and a Splunk Add-On.

August 11, 2024 · 2 min · 275 words · Emlin
Setting Up Splunk on Windows Using WSL for Free

Setting Up Splunk on Windows Using WSL for Free

A step-by-step guide to setting up Splunk on Windows using WSL with a free Splunk license. We also discuss the different types of Splunk licenses. This guide accompanies the video tutorial on my YouTube channel.

August 11, 2024 · 3 min · 591 words · Emlin
BearlyChilly - Working with Splunk Cloud ACS

How to Work with Splunk Cloud ACS

Splunk Admin Config Service (ACS) API is a super powerful tool that allows you to manage your Splunk Cloud instance programmatically. In this post, I’ll showcase some use cases for Splunk Cloud’s ACS API as well as provide some real-world examples.

February 27, 2024 · 9 min · 1722 words · Emlin
Bearlychilly - Detecting Typosquatting with Splunk and the URL Toolbox App

Bearlychilly - Detecting Typosquatting with Splunk and the URL Toolbox App

Splunk users can apply the ut_levenshtein macro from the URL Toolbox app to compare domain names against a reference domain, enabling the detection of potential typosquatting.

February 21, 2024 · 3 min · 543 words · Emlin