Splunk Built

Splunk Security Essentials for Ransomware

Splunk Security Essentials for Ransomware
Splunk Security Essentials for Ransomware is an app designed to help Splunk software users manage their risk and response to WannaCry and similar types of ransomware. The app provides you a starting point that you can customize to work in your specific environment. Splunk Security Essentials for Ransomware includes more than a dozen use cases that allow you to measure how effectively you are reducing the risk of WannaCry and similar exploits, as well as searches which can help detect the effects of ransomware within your enterprise. This app uses Splunk Enterprise and the Splunk Search Processing Language (SPL) to showcase working examples of detection and best practices to be employed in your environment to prevent ransomware infections.
Splunk Built

Splunk Security Essentials

Splunk Security Essentials
Detect insiders and advanced attackers in your environment with the free Splunk Security Essentials app. This app uses Splunk Enterprise and the power of our Search Processing Language (SPL) to showcase 55+ working examples of anomaly detection related to entity behavior analysis (UEBA). Each use case includes sample data and actionable searches that can immediately be put to use in your environment. The use cases leverage analytics to give analysts the ability to detect unusual activities like users who print more pages than usual (spike detection) or logon to new servers (first seen behavior), the ability to see when adversaries change file names to evade detection, and more. Each use case includes the expected alert volume, an explanation of how the search works, description of the security impact, and you can save searches directly from the app to leverage any alert actions you have installed such as creating a Notable Event or Risk Indicator in ES, an External Alarm in UBA, or sending email for review.
Splunk Built

Splunk Enterprise 6.6 Overview

Splunk Enterprise 6.6 Overview
Release 6.6 is the latest version of Splunk Enterprise and Splunk Cloud. We have developed an app to guide you through the powerful new features. This is not an in-depth tutorial, rather a guide to help you understand the new features, and to provide examples as well as sample reports, dashboards and visualizations.
Splunk Built

Splunk Machine Learning Toolkit

Splunk Machine Learning Toolkit
The Splunk Machine Learning Toolkit App delivers new SPL commands, custom visualizations, assistants, and examples to explore a variety of ml concepts. Each assistant includes end-to-end examples with datasets, plus the ability to apply the visualizations and SPL commands to your own data. You can inspect the assistant panels and underlying code to see how it all works. ML Youtube Playlist http://tiny.cc/splunkmlvideos ML Cheat Sheet http://tiny.cc/mlcheatsheet Assistants: * Predict Numeric Fields (Linear Regression): e.g. predict median house values. * Predict Categorical Fields (Logistic Regression): e.g. predict customer churn. * Detect Numeric Outliers (distribution statistics): e.g. detect outliers in IT Ops data. * Detect Categorical Outliers (probabilistic measures): e.g. detect outliers in diabetes patient records. * Forecast Time Series: e.g. forecast data center growth and capacity planning. * Cluster Numeric Events: e.g. Cluster Hard Drives by SMART Metrics
Splunk Built

Splunk Add-on Builder

Splunk Add-on Builder
The Splunk Add-on Builder is a Splunk app that helps you build and validate technology add-ons for your Splunk Enterprise deployment. The goals of the Splunk Add-on Builder are to: * Guide you through all of the necessary steps of creating an add-on * Build alert actions and adaptive response actions for Splunk Enterprise Security * Reduce development and testing time * Follow best practices and naming conventions * Maintain CIM compliance * Maintain quality of add-ons * Validate and test the add-on, helping you to check for certification readiness and to identify any limitations such as compatibilities and dependencies * Maintain a consistent look and feel while still making it easy for you to add branding
Splunk Security Essentials for Ransomware
Splunk Security Essentials
Splunk Enterprise 6.6 Overview
Splunk Machine Learning Toolkit
Splunk Add-on Builder

Extend the Power of Splunk with Apps and Add-ons

Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need.

Splunk Certification Program

Splunk's App Certification program uses a specific set of criteria to evaluate the level of quality, usability and security your app offers to its users. In addition, we evaluate the documentation and support you offer to your app's users.

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 50GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
© 2005-2017 Splunk Inc. All rights reserved.
Splunk®, Splunk>®, Listen to Your Data®, The Engine for Machine Data®, Hunk®, Splunk Cloud™, Splunk Light™, SPL™ and Splunk MINT™ are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners.