Skip to content

Opstune.com

Threat Detection Engineering with Splunk
  • Services
  • Blog
  • Contact
  • About

SPL Nuggets: How are my rules performing?

Published 28 September, 202030 September, 2020 by Alex Teixeira in Splunk

How rare is a rare HTTP agent? Context-rich alerts because of math

Published 16 September, 202016 September, 2020 by Alex Teixeira in Analytics, Splunk

Should I date a model? Myths busted!

Published 3 September, 202010 September, 2020 by Alex Teixeira in Splunk

Splunking BOTS V3: Q212, Q214, Q300

Published 9 July, 2020 by Alex Teixeira in Analytics, Splunk

SPL Nuggets: Visualizing RDP/TS Connections from Eventlogs

Published 1 July, 20202 July, 2020 by Alex Teixeira in Analytics, Splunk

Splunking BOTS v3: What Frothly VPN user generated the most traffic? Q330

Published 19 June, 202019 June, 2020 by Alex Teixeira in Analytics, Splunk

Splunking questions from BOTS v3 dataset – Q215

Published 17 June, 202018 June, 2020 by Alex Teixeira in Analytics, Splunk

JIRA workflow for Detection Engineering teams

Published 11 June, 202011 June, 2020 by Alex Teixeira in Analytics

Threat detection metrics: exploring the true-positive spectrum

Published 11 June, 202011 June, 2020 by Alex Teixeira in Infosec

SPL Nuggets: Know your admins – from eventlogs!

Published 5 June, 202011 June, 2020 by Alex Teixeira in Analytics

Posts navigation

← Older posts

Recent Posts

  • SPL Nuggets: How are my rules performing?
  • How rare is a rare HTTP agent? Context-rich alerts because of math
  • Should I date a model? Myths busted!
  • Splunking BOTS V3: Q212, Q214, Q300
  • SPL Nuggets: Visualizing RDP/TS Connections from Eventlogs

WordPress.com.

Cancel