Skip to content

Opstune.com

Threat Detection Engineering
  • Services
  • Blog
  • Contact
  • About

SPL Nuggets: Know your admins – from eventlogs!

Published 5 June, 202011 June, 2020 by Alex Teixeira in Analytics

SIEM use cases development workflow – Agile all the things!

Published 15 October, 201711 June, 2020 by Alex Teixeira in Analytics

It’s about time to change your correlation searches timing settings

Published 1 June, 201711 June, 2020 by Alex Teixeira in Analytics

Mapping SDLC to security use cases development process

Published 2 March, 201711 June, 2020 by Alex Teixeira in Analytics

SIEM tricks: dealing with delayed events in Splunk

Published 13 December, 201611 June, 2020 by Alex Teixeira in Splunk

Splunk/ES: dynamic drilldown searches

Published 12 October, 2016 by Alex Teixeira in Analytics, Splunk
3 Comments

Honing in on the Homeless – the Splunkish way

Published 8 April, 201611 April, 2016 by Alex Teixeira in Analytics, Splunk

Blame it on YOU for the damn false-positives!

Published 2 March, 20162 March, 2016 by Alex Teixeira in Infosec
4 Comments

Splunkers on Twitter

Published 17 December, 201528 February, 2017 by Alex Teixeira in Infosec, Splunk

Challenge your MSSP/SOC/CSIRT: what metrics can they provide you?

Published 4 November, 201511 May, 2017 by Alex Teixeira in Analytics, Infosec
Leave a comment

Posts navigation

← Older posts
Newer posts →

Recent Posts

  • Writing Splunk Enterprise Security Correlation Searches
  • SPL Nuggets: How are my rules performing?
  • How rare is a rare HTTP agent? Context-rich alerts because of math
  • Should I date a model? Myths busted!
  • Splunking BOTS V3: Q212, Q214, Q300

Website Built with WordPress.com.

Cancel