Splunk Intelligence Management (TruSTAR) and Emerging Threats: A Log4j Use Case
Splunk Intel Management (Legacy) has reached end of sale. If you are an Splunk Enterprise Security customer interested in similar functionality through Splunk Threat Intelligence Management, see the following page: Using Threat Intelligence Management.
Log4Shell vulnerability in the popular Apache Log4j 2 is a critical zero-day vulnerability that enables bad actors to perform remote code execution (RCE). In this video, we will show you how a team took advantage of their Splunk Intel Management (Legacy) solution to save time from the manual handling and curation of Indicators related to this emerging threat and to improve their investigation efforts.
Additional resources
- Log4J Resources:
- Splunk Intel Management (Legacy):