Designing and Creating Add-ons for Splunk Enterprise Security

Focused View

Joe Abraham

1:41:58

102 View

0. Course Overview

0. Course Overview.mp4

01:59

1. Understanding and Configuring Data Sources for Splunk Enterprise Security

0. Getting Ready for Splunk Data.mp4

04:50

1. Understanding Data Sources for Splunk Enterprise Security.mp4

03:40

2. Configuring Add-ons for Data Ingestion.mp4

04:57

3. Configuring Data Sources for Splunk Enterprise Security.mp4

07:25

4. Introducing the Custom Add-on Use Case.mp4

05:30

5. Wrapping up the Data Discussion.mp4

01:26

2. Exploring the Splunk Add-on Builder

0. Introducing the Add-on Builder.mp4

02:34

1. Splunk Add-on Builder Features.mp4

02:47

2. Considerations for Building Add-ons.mp4

02:44

3. How to Create an Add-on.mp4

03:57

4. Add-on Validation.mp4

03:56

3. Designing a Custom Splunk Add-on

0. Introduction to Add-on Design.mp4

04:10

1. Developing with Splunk.mp4

02:45

2. Exploring the UFW Data.mp4

05:06

3. Data Model Selection.mp4

03:20

4. Mapping to the Data Models.mp4

03:30

5. Wrapping up the Design.mp4

01:18

4. Creating a Splunk Add-on

0. Creating Using the Add-on Builder.mp4

05:08

1. Stepping Through the Add-on Builder.mp4

05:08

2. Working in the Add-on Builder.mp4

04:22

3. Finalizing the Add-on Project.mp4

02:16

4. Getting the Add-on Packaged.mp4

02:19

5. Finalizing the Add-on Build.mp4

02:01

5. Validating a Splunk Add-on

0. Add-on Builder Validation Introduction.mp4

02:49

1. Validating the New Add-on.mp4

02:33

2. Installing the Add-on.mp4

02:44

3. Verify Add-on Functionality with Data.mp4

03:22

4. Lets Wrap!.mp4

03:22

Description

Splunk Enterprise Security is a premium application used within the Splunk deployment to help with SOC operations. This course will teach you how to design and create add-ons to enable customization of the application and its uses.

What You'll Learn?

Splunk Enterprise Security (ES) solves many problems within our SOCs, including efficient operations. In this course, Designing and Creating Add-ons in Splunk Enterprise Security, you’ll learn how to design the add-on based on use cases and the data, as well as build it. First, you’ll learn about the data sources and see how to configure them for ingestion into Splunk. Next, you’ll learn about the Splunk Add-on Builder and walk through the workflow of it. We’ll design and create an add-on in Splunk. Finally, you’ll learn how to validate the add-ons to ensure that they align with best practices and recommendations. When you’re finished with this course, you’ll have the skills and knowledge of Splunk Enterprise Security needed to build add-ons for new data sources to use within Splunk Enterprise Security.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Network Security

Network Engineering

Joe Abraham

Instructor's Courses

Joe Abraham, CCIE #62417, is a Network Security Consultant working in the public sector space, assisting customers develop and implement functional and secure network architectures. He graduated from Excelsior College with an M.S. in Cybersecurity and a B.S. in Information Technology (Network Management). He currently holds many IT certifications to include CCIE, CISSP, GSEC, and CCNP Security. He is also a member of the GIAC Advisory Board. Joe is a mentor to IT professionals and a blogger who spends his time either with his wife and three children, exercising, researching and writing about technology, or learning new technologies. Spending much of his experience helping to train and educate IT professionals, he is passionate about teaching and always strives to be a positive influence in the IT field.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.