Splunk For SOC Analysts (New Course) [2023]

Focused View

Rishabh Gupta

7:13:19

177 View

1. About Splunk

1. About Splunk.mp4

03:01

2. Splunk Enterprise as a SIEM.mp4

00:34

3. Splunk segments of data pipeline.mp4

06:32

4. Splunk Components.mp4

07:02

5. Splunk Components mapping with Data pipeline segments.mp4

01:16

6. Splunk Sample Architecture.mp4

13:24

7. Conclusion Of Various Splunk Architecture Discussion.mp4

01:05

2. Splunk Home Lab Setup - Windows Based On Azure

1. How to create an account in azure.mp4

02:36

2.1 How to apply for Splunk Enterprise Developer License.html

2. How to apply for Splunk Enterprise Developer License.html

3. Creation of Windows VM on Azure using free Azure Credit.mp4

07:40

4. Splunk Enterprise Installation On Windows Machine.mp4

05:05

5. Splunk Developer license upload and other configuration - Windows Instance.mp4

04:14

3. Splunk home lab setup - Linux Based on VM Ware

1. Splunk Installation on Linux Machine (Centos).mp4

09:36

2. Splunk Developer License Upload & Other Configurations - Linux instance.mp4

05:29

4. Splunk default ports

1. Splunk default ports.mp4

01:22

5. Splunk directory structure

1. Splunk directory structure.mp4

05:09

6. Splunk Configuration (.conf) files

1.1 Various Splunk conf files - Splunk documentation.html

1. Splunk Configuration (.conf) files.mp4

03:26

7. Splunk App

1.1 Splunkbase URL.html

1. Splunk App.mp4

03:03

8. Lab 2 Simulation of Event Generation

1.1 Download SA-Eventgen.zip from here.html

1. SA-Eventgen App installtion and index creation in Splunk - Windows.mp4

07:53

2.1 Download SA-Eventgen.zip from here.html

2. SA- Eventgen App installation on Splunk (Linux).mp4

09:19

9. Splunk GUI Overview

1. Splunk GUI Overview.mp4

25:20

10. Available options of time ranges and abbreviations in searches

1. Available options of time ranges and abbreviations in searches.mp4

08:37

11. Splunk Search Timeline Controls

1. Splunk Search Timeline Controls.mp4

03:28

12. Available options of time ranges and abbreviations in search bar

1. Available options of time ranges and abbreviations in search bar.mp4

08:37

13. Search Language Syntax concepts

1. Search Language Syntax concepts.mp4

10:20

14. Case Sensitivity During Splunk Search

1. Case Sensitivity During Splunk Search.mp4

02:39

15. Lab 3 How to upload and investigate logs in Splunk

1.1 exchange 2016 iis.zip

1. Investigation file - iis logs upload.mp4

12:22

2.1 nutrients.csv

2. How to upload csv (or any other structured) file in Splunk.mp4

05:28

16. Lab 4 Monitor your own OS logs

1. Monitoring of own machines OS logs.mp4

04:53

17. Lab 5 Manual parsing of logs

1.1 Watch this video available on MyCyberly Youtube channel.html

1. Manual parsing of logs.html

18. Lab 6 How to monitor file path Example of csv file extraction

1.1 vmware-inventory.csv

1.2 Watch this video available on MyCyberly Youtube channel.html

1. How to monitor file path and example of CSV file extraction.html

19. Splunk Role Based Access

1. Splunk role based access.mp4

16:21

20. lookup, lookup definition, automatic lookup

1.1 apache httpstatus.csv

1.2 watch video about Splunk lookup, lookup definition, automatic lookup on my youtube channel.html

1. lookup, lookup definition, automatic lookup.html

21. Splunk Important Commands

1. commands intro.mp4

00:57

2. table commands.mp4

03:27

3. fields command.mp4

04:12

4. head command.mp4

03:30

5. tail command.mp4

01:22

6. top & rare command.mp4

03:13

7. stats command.mp4

09:52

8. timechart command.mp4

04:09

9. chart command.mp4

01:54

10. eventstats command.mp4

02:13

11. dedup command.mp4

02:17

12. sort & rename command.mp4

02:15

13. iconify command.mp4

00:43

14. highlight command.mp4

00:25

22. Lookup Editor App Installation

1. Lookup Editor App Installation.mp4

01:32

23. Some more search commands

1. inputlookup , outpulookup , lookup, append, rex, fillnull, transpose command.mp4

24:00

24. Splunk KV Store (Key Value Store)

1. Splunk KV Store.mp4

07:40

25. Installation of Splunk Add-on for Microsoft Windows

1. Installation of Splunk Add-on for Microsoft Windows.mp4

05:14

26. Some More Splunk Search Commands

1. eval command.mp4

16:14

2. where command and Boolean operator precedence.mp4

05:16

3. multivalue functions eval command mvexpand command.mp4

09:08

27. Types of Search Commands

1. Types of search commands and processing attributes.mp4

07:01

28. Splunk data life cycle stages in term of buckets

1. Splunk data life cycle stages in term of buckets.mp4

05:19

29. General Search Practices

1. General Search Practices.mp4

06:00

30. App Creation from GUI

1. App Creation from GUI.mp4

03:11

31. Field extractions

1. Field extractions.mp4

12:05

32. Report & Alerts

1. Report & Alerts.mp4

12:08

33. Some more Splunk search commands

1. iplocation and geostats command.mp4

08:23

34. Splunk Dashboard Creation

1. Dashboard.mp4

41:46

35. Splunk Dashboard Optimization Using Base Search

1. Dashboard Optimization.mp4

08:45

36. Splunk Macros

1. Splunk Macros.mp4

15:42

37. Splunk Eventtypes

1. Splunk Eventtypes.mp4

07:35

Description

Splunk For SOC Analysts, Threat Hunters & SOC Leads

What You'll Learn?

Specially crafted course for SOC Analysts / Leads and Threat Hunters (So that you don't waste your time in learning, un-necessary things )
How to use Splunk for Security Information and Event Management (SIEM) tasks
Setting up of small home lab with real-time data in it.
Learn important commands
Learn about how to create reports, alerts, dashboard and many more things required for SOC Analysts.

Who is this for?

If you want to up your game during investigation or threat hunting using Splunk,

If you want to be a Splunk admin, then this is foundation course for you.

if you feel that you could have done better and faster investigation than others, if you were good at Splunking.

Specially crafted course for SOC Analysts / Leads and Threat Hunters (So that you don't waste your time in learning, un-necessary things )

You will find this course worth it, even if you are already working on Splunk ES. You will definitely learn lot of new things. you will learn how to do the things in a better way.

What You Need to Know?

You need to have a experience in SOC at-least for four to five months. This is not for a fresher who is completely new to SOC.

This course is more about learning Splunk, so that you can leverage Splunk Knowledge as SOC professional (SOC Analysts/Leads or Threat Hunters)

More details

Description
This course is specially designed for SOCÂ analysts, Threat hunters and SOCÂ Leads, so that they can use Splunk in completing their BAUÂ tasks.
As a SOC analyst, learning Splunk is crucial to stay ahead in the constantly evolving cybersecurity landscape. Splunk is the industry-leading tool for collecting, analyzing, and visualizing data, and it is widely used by organizations of all sizes to manage their security operations.
By learning Splunk, you can efficiently monitor your organization's network and systems logs, detect anomalies, and investigate incidents in real-time. You can also create custom dashboards and reports to visualize data and identify trends, which can help you make informed decisions and take proactive measures to prevent future security threats.
Moreover, having Splunk expertise on your resume can significantly improve your job prospects and career growth opportunities. Many organizations require SOC analysts to have Splunk skills, and the demand for Splunk professionals is rapidly increasing. So, learning Splunk not only enhances your skills and capabilities but also opens up new doors of opportunities in the cybersecurity industry.
In summary, learning Splunk is a smart investment in your career as a SOC analyst, and it can help you stay competitive and advance your career in the rapidly growing cybersecurity field.
Who this course is for:
If you want to up your game during investigation or threat hunting using Splunk,
If you want to be a Splunk admin, then this is foundation course for you.
if you feel that you could have done better and faster investigation than others, if you were good at Splunking.
Specially crafted course for SOC Analysts / Leads and Threat Hunters (So that you don't waste your time in learning, un-necessary things )
You will find this course worth it, even if you are already working on Splunk ES. You will definitely learn lot of new things. you will learn how to do the things in a better way.

User Reviews

Rating

average 0

Total votes0

Focused display

Have more than 9 + years of experience in Cyber Security field.Have worked for multiple organizations to establish their Cyber Security Practice.Academics: Master in Information Security from Indian Institute Of Information technology.Cyber Security Expert. Lives in United Arab Emirates (Dubai). Loves to travel. Working on creation of vibrant Cyber Security community. For any support reach out to: [email protected]

Udemy

View courses Udemy

Students take courses primarily to improve job-related skills.Some courses generate credit toward technical certification. Udemy has made a special effort to attract corporate trainers seeking to create coursework for employees of their company.