Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Warning

This app is archived. Learn more

Boss of the SOC (BOTS) Investigation Workshop for Splunk app icon

Boss of the SOC (BOTS) Investigation Workshop for Splunk

This app is a companion app used for the Investigating with Splunk workshop and uses the BOTSv1 data that is hosted at Splunk.com. If you are interested in getting a guided tour of the BOTSv1 dataset, which includes both an APT and Ransomware scenario, this is the app to use! Each scenario provides a guided walkthrough to better understand the scenarios and how an analyst can use Splunk to identify these kinds of techniques.

Built by John Stoner
splunk product badge
screenshot
screenshot
screenshot

Latest Version 1.2.2
May 1, 2018
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 4.x
Rating

0

(0)

Log in to rate this app
Support
Boss of the SOC (BOTS) Investigation Workshop for Splunk support icon
Not Supported
Learn more
This app is a companion app used for the Investigating with Splunk workshop and uses the BOTSv1 data that is hosted at Splunk.com. If you are interested in getting a guided tour of the BOTSv1 dataset, which includes both an APT and Ransomware scenario, this is the app to use! Each scenario provides a guided walkthrough to better understand the scenarios and how an analyst can use Splunk to identify these kinds of techniques.

Categories

Created By

John Stoner

Type

app

Downloads

4,833

Resources

Login to report this app listing