Splunk enables security analysts to quickly identify the root cause of security incidents and make informed decisions about how to remediate an issue. This hands-on experience enables you to use Splunk in a set of security-relevant real-world exercises.
Three exercises cover three key components of a security investigation :
Exercise 1 : Detection – Identify whether there is a potential security issue.
Exercise 2 : Validation – Determine whether there is a need for further investigation.
Exercise 3 : Scoping – Discover the impact of a discovered issue.
Install this app on a lab, development, or test server. Do not install it on a production server as it includes demo data.
Splunk AppInspect evaluates Splunk apps against a set of Splunk-defined criteria to assess the validity and security of an app package and components.
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.