Featured: Observability Cloud
Monitoring Postgres with OpenTelemetry
This article explores monitoring the open-source relational database PostgreSQL by leveraging internal server activity statistics using the OpenTelemetry Collector. Additionally, it explores how database performance connects to application performance data.
Featured: SOAR
Disabling a user account with Azure AD Graph connector
The Azure AD Account Locking playbook in Splunk SOAR can help you address phishing threats. It aligns to MITRE D3FEND technique Account Locking in Credential Eviction, which involves the process of temporarily disabling user accounts on a system or domain.
Featured: Platform
Getting started with Splunk Artificial Intelligence
This article provides a structured approach for organizations to adopt the artificial intelligence/machine learning capabilities in Splunk software. It outlines a progressive journey through a three-tiered capability model, guiding prerequisites, implementation steps, resource requirements, and expected outcomes.
Resources for Splunk Program Managers
The Splunk Success Framework
Accelerate and increase the value you derive from your data with Splunk software using the Splunk Success Framework (SSF), a flexible collection of best practices for setting up Splunk Enterprise or Splunk Cloud Platform as a program.
Data Ingestion and Application
Data Descriptors
Bring data to every question, decision, and action across your organization with comprehensive guidance for getting data in and applying data to your key use cases.
Get the latest
New Articles
- Platform
- Turn data into doing to unlock innovation, enhance security and drive resilience.
- Security
- Protect your business and modernize your security operations with a best-in-class data platform.
- Observability
- Solve problems in seconds with the only full-stack, analytics-powered, and OpenTelemetry-native observability solution.
- Splunk Success Framework
- The Splunk Success Framework (SSF) is a flexible collection of best practices for setting up your Splunk software implementation as a program.
- Data Descriptors
- The data sources in use at your organization can all be linked to common use cases. Get recommendations from Splunk experts and then start getting answers from your data.
- Antivirus and antimalware data
- Application data
- Application server data
- Authentication data
- Backup data
- Vendor-specific data
- Endpoint detection and response (EDR) data
- Intrusion detection and prevention data (IDS and IPS)
- Load balancer data
- Email data
- Network communication data
- Patch management data
- Physical security data
- Web proxy data
- Change events data
- Configuration management data
- IP address assignment data
- Vulnerability detection data
- Web server data
- DNS data
- Linux and Unix
- Okta
- SAP
- Zscaler
- Zoom
- Zeek
- Websense
- VMware
- CrowdStrike
- Carbon Black
- Kubernetes
- Check Point
- Fortinet
- Salesforce
- Symantec
- Palo Alto Networks
- Trend Micro
- Tenable
- GitHub
- Atlassian
- AppDynamics
- Dell
- Syslog
- Apache
- Amazon
- Cisco
- Microsoft
- JupiterOne
- GitLab
- Mac OS
- Docker
- Firewall data
- MOVEit
- Skyhigh Security
- CyberArk
- OpenAI
- Adobe
- NETSCOUT
- Nagios
- Tanium
- Gigamon