Learn how to plan the deployment and management of a Splunk ecosystem.
Overview
Syllabus
Introduction
- Splunk explained
- What you should know
- SIEM and SOAR overview
- Splunk overview
- Splunk components
- Splunk data ingestion
- Splunk deployment planning
- Installing Splunk on Linux
- Installing Splunk on Windows
- Splunk users and roles
- Using the Splunk web GUI
- Using the Splunk CLI
- Deploying the AWS Splunk AMI
- Deploying Splunk Cloud
- Forwarding Linux logs to Splunk
- Forwarding Windows log events to Splunk
- Monitoring Windows files
- Monitoring Windows printers
- Configuring Snort IDS alerts for Splunk
- Configuring an HTTP Event Collector (HEC)
- Forwarding Microsoft AD events to Splunk Cloud
- Splunk searching overview
- Performing Splunk queries
- Working with Splunk dashboards and reports
- Managing Splunk alerts
- What's next?
Taught by
Daniel Lachance