Splunk Security Event Monitoring - Blue Team Series with Hackersploit

Dive into a comprehensive tutorial on Splunk Security Event Monitoring as part of the Blue Team Series. Learn about Splunk, a powerful data-to-everything platform used by Fortune 100 companies for data security and automation. Explore the setup process, configuration, and practical implementation of Splunk for effective event monitoring. Discover how to install and configure the Splunk Forwarder, read and forward log files, and make use of log data. Get hands-on experience with the Splunk dashboard, including customization techniques. Gain valuable insights into this essential cybersecurity tool through a detailed, step-by-step demonstration in a lab environment.

Introduction
What We Will Be Covering
Prerequisites
Introduction to Splunk
What is Splunk?
Splunk Learning Resources
About Our Lab Environment
Beginning the Practical Demo
How to Setup Splunk
How to Access Splunk
How to Configure Splunk
How to Install the Splunk Forwarder
How to Initialize Splunk
How to Add the Forward Server
How to Read the Logs
How to Forward the Log Files
Configure inputs.conf
Verify Data is Being Forwarded
How to Make Use of the Log Data
Exploring the Splunk Dashboard
Customizing Your Dashboards
Conclusion