Completed
Backend Implementation: Splunk
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Sigma - Generic Signatures for Log Events
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Log Monitoring
- 3 Problems!
- 4 It's open source!
- 5 Rule Format
- 6 Rule Example: Mimikatz Detection
- 7 WCE Detection
- 8 Rule Example: Webshell Reconnaissance Activity
- 9 Rule Example: Relevant AV Events
- 10 Rule Example: Suspicious Login Attempts
- 11 Example: Django Exceptions
- 12 Challenges in Rule Conversion
- 13 Sigma Converter Configurations
- 14 Conversion Process
- 15 Backend Implementation: Splunk
- 16 Contributors and Community
- 17 Current State and Future Work
- 18 Questions?