Splunk For SOC Analysts (New Course) [2023]

سرفصل های دوره

Splunk For SOC Analysts, Threat Hunters & SOC Leads

1. About Splunk

1. About Splunk

2. Splunk Enterprise as a SIEM

3. Splunk segments of data pipeline

4. Splunk Components

5. Splunk Components mapping with Data pipeline segments

6. Splunk Sample Architecture

7. Conclusion Of Various Splunk Architecture Discussion

2. Splunk Home Lab Setup - Windows Based On Azure

1. How to create an account in azure

2.1 How to apply for Splunk Enterprise Developer License.html

2. How to apply for Splunk Enterprise Developer License.html

3. Creation of Windows VM on Azure using free Azure Credit

4. Splunk Enterprise Installation On Windows Machine

5. Splunk Developer license upload and other configuration - Windows Instance

3. Splunk home lab setup - Linux Based on VM Ware

1. Splunk Installation on Linux Machine (Centos)

2. Splunk Developer License Upload & Other Configurations - Linux instance

4. Splunk default ports

1. Splunk default ports

5. Splunk directory structure

1. Splunk directory structure

6. Splunk Configuration (.conf) files

1.1 Various Splunk conf files - Splunk documentation.html

1. Splunk Configuration (.conf) files

7. Splunk App

1.1 Splunkbase URL.html

1. Splunk App

8. Lab 2 Simulation of Event Generation

1.1 Download SA-Eventgen.zip from here.html

1. SA-Eventgen App installtion and index creation in Splunk - Windows

2.1 Download SA-Eventgen.zip from here.html

2. SA- Eventgen App installation on Splunk (Linux)

9. Splunk GUI Overview

1. Splunk GUI Overview

10. Available options of time ranges and abbreviations in searches

1. Available options of time ranges and abbreviations in searches

11. Splunk Search Timeline Controls

1. Splunk Search Timeline Controls

12. Available options of time ranges and abbreviations in search bar

1. Available options of time ranges and abbreviations in search bar

13. Search Language Syntax concepts

1. Search Language Syntax concepts

14. Case Sensitivity During Splunk Search

1. Case Sensitivity During Splunk Search

15. Lab 3 How to upload and investigate logs in Splunk

1.1 exchange 2016 iis.zip

1. Investigation file - iis logs upload

2.1 nutrients.csv

2. How to upload csv (or any other structured) file in Splunk

16. Lab 4 Monitor your own OS logs

1. Monitoring of own machines OS logs

17. Lab 5 Manual parsing of logs

1.1 Watch this video available on MyCyberly Youtube channel.html

1. Manual parsing of logs.html

18. Lab 6 How to monitor file path Example of csv file extraction

1.1 vmware-inventory.csv

1.2 Watch this video available on MyCyberly Youtube channel.html

1. How to monitor file path and example of CSV file extraction.html

19. Splunk Role Based Access

1. Splunk role based access

20. lookup, lookup definition, automatic lookup

1.1 apache httpstatus.csv

1.2 watch video about Splunk lookup, lookup definition, automatic lookup on my youtube channel.html

1. lookup, lookup definition, automatic lookup.html

21. Splunk Important Commands

1. commands intro

2. table commands

3. fields command

4. head command

5. tail command

6. top & rare command

7. stats command

8. timechart command

9. chart command

10. eventstats command

11. dedup command

12. sort & rename command

13. iconify command

14. highlight command

22. Lookup Editor App Installation

1. Lookup Editor App Installation

23. Some more search commands

1. inputlookup , outpulookup , lookup, append, rex, fillnull, transpose command

24. Splunk KV Store (Key Value Store)

1. Splunk KV Store

25. Installation of Splunk Add-on for Microsoft Windows

1. Installation of Splunk Add-on for Microsoft Windows

26. Some More Splunk Search Commands

1. eval command

2. where command and Boolean operator precedence

3. multivalue functions eval command mvexpand command

27. Types of Search Commands

1. Types of search commands and processing attributes

28. Splunk data life cycle stages in term of buckets

1. Splunk data life cycle stages in term of buckets

29. General Search Practices

1. General Search Practices

30. App Creation from GUI

1. App Creation from GUI

31. Field extractions

1. Field extractions

32. Report & Alerts

1. Report & Alerts

33. Some more Splunk search commands

1. iplocation and geostats command

34. Splunk Dashboard Creation

1. Dashboard

35. Splunk Dashboard Optimization Using Base Search

1. Dashboard Optimization

36. Splunk Macros

1. Splunk Macros

37. Splunk Eventtypes

1. Splunk Eventtypes

139,000 تومان

افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: Udemy-Training