.conf2014 Highlight Series: Lesser Known Commands in Splunk Search Processing Language (SPL)

LGO-conf2015-RGB

.conf2015 registration is open!

As we get closer to .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas this September, we’re excited to continue our series of .conf2014 retrospectives. This week we revisit Kyle Smith’s presentation covering less popular but powerful commands in Splunk Search Processing Language (SPL).

Skill Level:
Good for All Skill Levels

Solution Area:
Search Language

Splunk:
Splunk Enterprise

Presentation Overview:
From one of the most active contributors to Splunk Answers and the IRC channel, this session covers those less popular but still super powerful commands, such as “map”, “xyseries”, “contingency” and others. This session also showcases tricks such as “eval host_{host} = Value” to dynamically create fields based on other field values, and …

» Continue reading

.conf2014 Highlight Series: Detecting Fraud and Suspicious Events Using Risk Scoring

LGO-conf2015-RGB

.conf2015 registration is open!

We’re excited to continue our series of .conf2014 #TBT highlights, especially as we get closer to .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas this September. This week we revisit Robert Perdues’s presentation about how Splunk can be used to detect fraud and suspicious events using risk scoring.

Skill Level:
Intermediate

Solution Area:
Fraud, Security

Splunk:
Splunk Enterprise

Presentation Overview:
This session showcases how Splunk can be used to build a risk scoring engine designed to detect fraud and other suspicious activities. This presentation includes a real-world fraud detection use case, a detailed description of the searches and lookups, which drive risk scoring, as well as other cyber security related applications of risk …

» Continue reading

.conf2014 Highlight Series: Getting Deeper Insights into your Virtualization and Storage with Splunk

LGO-conf2015-RGB

.conf2015 registration is open!
.conf2015 call for papers and speakers ends tomorrow – May 8!

As we get closer to .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas in September, we’re excited to continue our series of .conf2014 #TBT highlights. This week we revisit Stela Udovicic and Michael Donnelly’s presentation focused on Splunk insights into virtualization and storage.

Skill Level:
Good for all skill levels

Solution Area:
IT Operations, Application Management

Splunk:
Splunk App for VMware
Splunk App for NetApp
Splunk Enterprise

Presentation overview:
Virtualization and storage technologies go hand-in-hand. If performing poorly, they can have a serious impact on your applications’ performance and users’ experience. This presentation shows how Splunk can help you get unified visibility …

» Continue reading

.conf2014 Highlight Series: Creating an Interactive Transaction Profiler

.conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

LGO-conf2015-RGB

In our ongoing series of .conf2014 #TBT highlights, we revisit Matthias Maier’s “Dashboard Fun” presentation focused on easily creating interactive dashboards with Splunk.

Skill Level:
Intermediate

Solution Area:
Application Development, Application Management

Splunk:
Splunk Enterprise

Presentation overview:
Using Simple XML and Splunk Enterprise, learn how to create easy interactive dashboards to explore data. This demo showcases great tools to put ion the hands of Splunk users, help desk users and IT Operations staff.

For the full recording, check out the Creating an Interactive Transaction Profiler audio.

Register for .conf2015 today and look for more of our #TBT .conf highlights as we …

» Continue reading

.conf2014 Highlight Series: Splunk Monitoring Console

UPDATE: .conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

Welcome back to our .conf2014 highlight series! Today, we revisit another one of our most popular sessions of last year’s conference, “Splunk Monitoring – New Native Tools for Monitoring your Splunk Deployment.”

Skill Level:
Good for All Skill Levels

Solution Area:
Splunk Admin, Deploying Splunk

Splunk:
Splunk Enterprise

Presentation overview:
Collecting, interpreting and reporting on what Splunk is doing, especially in a distributed Splunk deployment can be challenging for the Splunk administrator. Where is the data that I’m indexing in Splunk coming from? What searches are taking up large amounts of system resources? How are the machines that Splunk is running on …

» Continue reading

.conf2014 Highlight Series: Using Selenium and Splunk for Transaction Monitoring Insight

UPDATE: .conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

Planning continues here at HQ for .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas in September. In the meantime, we’re excited to share the latest in our .conf2014 highlight series. This week, we revisit Elias Haddad’s presentation detailing the capabilities and benefits of the Synthetic Monitoring App.

Skill Level:
Good for all skill levels
Solution Area:
Application Management
Splunk:
Splunk Enterprise

Presentation overview:
The Synthetic Monitoring App enables you to monitor your Web application and measure critical KPIs such as application performance and availability. This session showcases how this app can simulate user interactions around the clock and set …

» Continue reading

.conf2014 Highlight Series: Operationalizing Advanced Threat Defense

UPDATE: .conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

As we get closer to .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas in September, we’re excited to continue our series of .conf2014 #TBT highlights. This week we revisit Monzy Merza’s in-depth presentation focused on how to get the most out of the Splunk App for Enterprise Security.

Skill Level:
Intermediate
Solution Area:
Security
Splunk:
Splunk App for Enterprise Security

Presentation overview:
Splunk’s Minister of Defense and security guru, Monzy Merza, shows how to use the Splunk App for Enterprise Security to detect, respond to and mitigate advanced malware through various phases of the threat’s lifecycle chain.

For

» Continue reading

.conf2014 Highlight Series: Deep Dive into Search Head Clustering

UPDATE: .conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

We’re back with the latest installment of our .conf2014 highlight series. Today, we revisit one of our most popular sessions of last year’s conference, “What’s New in Search Head Clustering.”

lgo-conf2014-pms381Skill Level:
Intermediate
Solution Area:
Deploying Splunk
Splunk:
Splunk Enterprise

Presentation overview:
A complete deep dive on the Splunk Search Head Clustering feature. This session covers how Search Head Clustering provides horizontal scalability to support more users and searches, and high availability to ensure users can access their searches at all times. We also cover the architecture, how it works, and best practices guides for large scale deployment.

For the full

» Continue reading

.conf2014 Highlight Series: Splunk Ninjutsu by David Veuve

UPDATE: .conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

In our ongoing series of .conf2014 #TBT highlights, we revisit David Veuve’s “Security Ninjutsu” presentation focused on using Splunk for Advanced Correlation, Anomaly Detection and Response Automation.
lgo-conf2014-pms381
Skill Level:
Advanced
Solution Area:
IT Operations, Security
Splunk:
Splunk Enterprise

Presentation overview:
Splunk’s analytical capabilities allow security users to leverage advanced correlation and anomaly detection moving beyond basic incident response. Splunk can also take action, ranging from integration with ticketing systems to automatic blocking and beyond. This session walks the audience through automated threat intelligence response, behavioral profiling, anomaly detection, and tracking an attack against the kill chain. Through each of the examples, David …

» Continue reading

.conf2014 Highlight Series: Splunk Search Optimization by Julian Harty

UPDATE: .conf2015 registration is now open!
We’ve also opened up the .conf2015 call for papers and speakers.

As we start looking ahead to .conf2015, we thought it would be good to share some highlights of past .conf sessions. In the first of a series of .conf2014 #TBT highlights, we revisit Julian Harty’s presentation of Splunk Search Optimization.
lgo-conf2014-pms381
Skill Level:
Intermediate
Solution Area:
Search Language
Splunk:
Splunk Enterprise

Presentation overview:
The simplicity and variability of searches can be a blessing and a curse. How can I tell if searches are really efficient? OK, Splunk has a job inspector, but what do all the options mean? And am I using the right commands for my goal? Is there a …

» Continue reading