Skip to content
Threat Detection Engineering
SPL Nuggets: Know your admins – from eventlogs!
SIEM use cases development workflow – Agile all the things!
It’s about time to change your correlation searches timing settings
Mapping SDLC to security use cases development process
SIEM tricks: dealing with delayed events in Splunk
Splunk/ES: dynamic drilldown searches
Honing in on the Homeless – the Splunkish way
Blame it on YOU for the damn false-positives!
Splunkers on Twitter
Challenge your MSSP/SOC/CSIRT: what metrics can they provide you?