State and Local Government: Unleashing Your Data
The right big data solution for state and local government agencies can help thwart cyber attacks, improve IT operations, enhance citizen services, and more. Realizing the full value of your data will unlock a trove of insight to support your agency’s mission.
Government agencies at every level face security and compliance challenges. With state and local government IT budgets shrinking, the state of security within these agencies has become top-of-mind due, in part, to the direct effects it can have on public safety. Splunk works with many state and local government agencies to help them manage their unstructured data, fulfill compliance requirements, monitor and detect security threats, and understand patterns within their data to gain new insights.
Phishing – What does it look like in machine data?
Hello Security Ninjas,
in the last write up i shared info of a phishing mail i received and what questions do you want to ask once an attack is identified. In this one, i want to give you some technical insights how it can look like when performing an investigation. I’m sure you have analyzed some of those attacks in your own environment so you know the departments that might be most targeted e.g. your high risk users – if you haven’t I highly recommend you check your own environment by collecting data from the different sources and analyzing how infections start in your environment and where they occur most often.
In this case for tracking the process and generating the activity events …
Splunk Apps and Add-ons: Do You Possess the Apptitude?
At Splunk, we’re committed to helping customers across industry and government ingest, organize and visualize their data to gain intelligent insights. Our platform is designed to help users maximize the use of machine data through powerful search and analysis capabilities. What many people don’t know is that we go beyond offering platform solutions to ensure our capabilities can be integrated at the application level. Did you know we also offer more than 700 apps that extend the power of Splunk?
Over the years Splunk has partnered with companies such as Microsoft and Cisco to develop customized apps to integrate with customers’ existing platforms and supplement Splunk’s Enterprise platform. Splunk Enterprise is our platform for Operational Intelligence, but apps and add-ons …
Masters of Machines 2015 Part 2: IT Complexity on the Rise
In part 1, I spoke about the key findings from the recently published research by Quocirca. In part 2, I’ll focus on how the research shows that Operational Intelligence helps manage IT infrastructure complexity. The adoption of cloud services (IaaS, Paas and SaaS) has a lot of well documented benefits but does add to IT infrastructure complexity making it more difficult to get insight into a technology landscape that is increasingly hybrid.
There were three big concerns with IT infrastructure:
- Downtime and disruption to mission critical (often hybrid) services
- Keeping up with innovation (e.g. cloud, big data, the internet-of-things (IoT), DevOps (software development and operations) and mobility
- Data chaos from all the information generated by a modern
Introducing #TriviaTuesday — Your chance to win a free pass to .conf2015
How would you like to attend .conf2015: The 6th Annual Splunk Worldwide Users’ Conference for FREE?! We assume your answer is “uhhhh….yes, please…” So let us tell you how it can be done:
Simply start brushing up on your .conf knowledge because we are kicking off a #TriviaTuesday sweepstakes on Twitter tomorrow! Follow @splunkconf on Twitter and we will tweet out a question based on either .conf2015 facts or previous .conf events every Tuesday at 10am PST for the next six weeks (hint: conf.splunk.com holds the key to your very free .conf2015 future).
You read that right. All you have to do is tweet us the correct answer to our trivia question and include the hashtags #enter …
Phishing hits a new level of quality
In recent weeks I’ve noticed that the quality of phishing e-mails I’m receiving (even to my personal account) have reached a new quality. They are getting better and better every day and even the latest spam filters let them through.
Why are they better?
Let’s look at one currently being sent out to many e-mail addresses that appears to be from DHL about tracking orders on the way to your house. For the German speaking market the quality is very good. Previously, end users have easily detected this kind of phishing attack as they contained spelling errors or bad translations form Google translate. Today they no longer include spelling errors and even the graphics and the branding of the e-mail look …
.conf2014 Highlight Series: Splunk for Data Science
In anticipation of .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas this September, we continue our #TBT series of .conf2014 highlights. This week we revisit Olivier De Garrigues and Tom LaGatta’s presentation explaining how data scientists obtain insights from their data.
Data scientists utilize a variety of tools and techniques to obtain insights from data. In this session, we discuss where and how Splunk fits into the data scientist’s tool belt. We highlight Splunk’s built-in statistical capabilities and integrate external statistical and graphical tools to showcase data preparation, predictive …
Smart AnSwerS #27
Hey there community, and welcome to the 27th installment of Smart AnSwerS!
You know you’re in the office later than usual when the central HVAC system shut off promptly at 6pm over an hour ago and the building is either full of boisterous conversations and laughter from hard working Splunkers unwinding, or an eerie silence if folks decided to unwind elsewhere. It’s been silent for the past hour, so I think it’s that’s my cue to wrap things up and crank out some of the awesome material I’ve hunted down for you, by you
Check out this week’s featured Splunk Answers posts:
Is there a list of Splunk apps that need developing?
rkent is new to developing Splunk …
Oooooooh, Shiny… Icons!
Who doesn’t love building “shiny” dashboards and getting the following reaction from their viewers? One trick to add some extra flare to your dashboards is replacing your single value rangemap icons with your own images that change color or to a different image depending on the value. This even includes animated .gif or svgs! For example the Operational Intelligence dashboard below shows one use case of single value icon replacements. In fact, the “Power” and “HVAC” icons on the bottom right are animated .gifs and both change color and spin faster according to the single value result. Cool eh? Let’s see how this is done so you can build your own! Note: This only works on 6.1.x and 6.2.x!
Introducing the Splunk App for Stream 6.3 Release!
We just improved our popular and free Splunk App for Stream! In the new Splunk App for Stream 6.3 release we’ve introduced Distributed Forwarder Management (DFM), a functionality that simplifies configuration while increasing administration flexibility. The new 6.3 release is available now on Splunkbase.
As a flexible software solution, you can deploy the Splunk App for Stream anywhere in the network—on-prem or cloud environments. Your implementation can be simple—collecting data from only a handful of SPAN ports, or very complex—with hundreds of different globally distributed Stream forwarders gathering data from endpoints. If your monitoring needs are more complex, you can target and customize how and where to deploy Stream to collect wire data to meet those needs more precisely.…