Learning Splunk

Focused View

Tom Kopchak

4:07:30

18 View

1.Introduction to Splunk

01.Course Overview.mp4

05:42

02.What Is Splunk.mp4

02:29

03.What Are Logs and Why They Matter.mp4

02:38

04.Setting Up an AWS Environment.mp4

11:53

05.Splunk Installation.mp4

07:45

2.Splunk Terminology

06.Splunk - Splexicon.mp4

01:53

07.What Data Looks Like in Splunk - Events.mp4

02:56

08.Getting Data Out of Splunk - Search.mp4

01:47

09.Saved Searches - Report.mp4

02:08

10.Visualizing Data - Dashboard.mp4

02:04

11.Splunks Search Language - Search Processing Language.mp4

01:23

12.What Type of Data Do We Have - Sourcetype.mp4

02:34

13.How is Data Stored - Index.mp4

02:19

14.Making Data Useful with Knowledge Objects and Fields.mp4

02:58

15.Enriching Data - Lookup Table.mp4

03:05

3.Data Onboarding

16.How to Approach Data Onboarding.mp4

05:36

17.Hands-On Lab - Onboarding Linux Authentication Logs.mp4

07:01

18.Field Extractions Using Splunk Apps.mp4

03:13

19.What If There Is Not an App Available.mp4

06:56

20.Splunk Configuration Files.mp4

03:39

4.Splunk Deployment Components

21.Core Splunk Infrastructure - Indexes and Search Heads.mp4

04:33

22.Supporting Infrastructure - Forwarders.mp4

02:37

23.Supporting Infrastructure - Syslog Receiver.mp4

04:39

24.Supporting Infrastructure - Deployment Server.mp4

07:19

25.Splunk Licensing - How It Works and How to Investigate Your License Utilization.mp4

05:23

26.Splunk Clustering - Building Splunk for Fault Tolerance.mp4

05:29

27.Distributed Splunk Environments.mp4

02:57

28.Splunk Apps - The Building Blocks of Any Splunk Deployment.mp4

04:13

5.Data Normalization and Data Models

29.Onboarding Iptables Logs.mp4

08:39

30.Normalizing Data Using the Splunk Common Information Model (CIM).mp4

04:35

31.Applying the Common Information Model to Your Firewall Logs.mp4

03:49

6.Using Your Splunk Environment

32.Overview of Splunk UI.mp4

04:51

33.Using Fields.mp4

10:38

34.Hands-on Lab - Working with the Splunk UI.mp4

10:37

35.Splunk Search Models.mp4

01:28

36.Hands-On Lab - Splunk Search Modes.mp4

05:29

37.The Search Pipeline.mp4

04:52

38.Hands-On Lab - Search Pipeline.mp4

03:36

7.Visualizing Data

39.Reporting Log Data - Tables.mp4

09:30

40.Hands-On Lab - Tables - Displaying Search Results.mp4

02:01

41.Advanced Searching Concepts - Chart - Graphing Search Results.mp4

02:05

42.Advanced Searching Concepts - Timechart - Results Over Time.mp4

03:53

43.Advanced Searching Concepts - Geostats and IP Location.mp4

02:30

44.Advanced Searching Concepts - Eval - Manipulating and Reformatting Data.mp4

02:26

45.Advanced Searching Concepts - Rename Making Table Headers More Accessible.mp4

02:27

46.Advanced Searching Concepts - Relative Time Syntax.mp4

07:43

47.Advanced Searching Concepts - Search Performance - Gotchas to Avoid.mp4

03:12

48.Advanced Searching Concepts - Time to Experiment Expanding Your Splunk Knowledge.mp4

01:01

49.Creating Splunk Dashboards.mp4

05:33

50.Hands-On Lab - Dashboards.mp4

01:18

8.Upgrading Splunk

51.Splunk Release Cycles.mp4

03:32

52.Whats New in Splunk 8.0.mp4

02:38

53.Planning for an Upgrade.mp4

08:18

54.Backing up Your Splunk Instance.mp4

03:34

55.Performing a Splunk Upgrade.mp4

08:29

56.Hands-on Lab - Upgrading Your Lab System.mp4

01:37

Description

Maybe you've heard about Splunk, but don't know how to use it to take control of big data? Have you used Splunk, but want to learn how to set it up and use it properly? If so, this course is for you. In this course, you will work with Splunk from the ground up. You'll learn the basics of Splunk terminology, and how to use the Splunk web interface to find data. You'll also build your own Splunk environment, add data to the Common Information Model (CIM), create dashboards, and find events within data. Finally, you'll master advanced searching techniques that are especially useful to those in network, security, and system administration roles. The course also covers the latest additions brought in for Splunk 8 and helps you quickly perform an upgrade. By the end of the course, you will be confident about using Splunk and will be well on the road to becoming a proficient Splunk architect and administrator as quickly as possible! The reference links and other sources for this video course are available at https://github.com/PacktPublishing/Learning-Splunk

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Data Science

Tom Kopchak

Instructor's Courses

Tom Kopchak is the Director of Technical Operations at Hurricane Labs, where he pretends to manage a team of network and Splunk engineers but is still an engineer and technology geek at heart. Tom is a Splunk Certified Architect and Accredited Consultant and has several years' experience building, designing, and managing Splunk deployments; he also manages teams of Splunk engineers, designing Splunk deployment strategies, and developing Splunk training materials. He holds a Masters degree in Computing Security from the Rochester Institute of Technology and has spoken at numerous Infosec conferences around the country (including Splunk .conf and DEFCON). You will often find him researching digital forensics topics or tinkering with any and all forms of computer hardware. When he is not working with computers, Tom enjoys composing, music improvisation (Acts of Music), and playing both the piano and organ.

PacktPub

View courses PacktPub

Packt is a publishing company founded in 2003 headquartered in Birmingham, UK, with offices in Mumbai, India. Packt primarily publishes print and electronic books and videos relating to information technology, including programming, web design, data analysis and hardware.