Donald MurchisonSplunk SSL Best Practices: Safeguarding Deployment Server Communication and Foiling…The impact of the attack described in this post is significant but very simple to fix. sslVerifyServerCert, sslCommonNameToCheck, and…Jul 3, 2023Jul 3, 2023
Donald MurchisonLookup to Drilldown: Building dynamic searches for triaging Risk notables in SplunkRisk Based Alerting (RBA) is the new frontier in SIEM. For those unfamiliar with RBA, there are a lot of great .conf presentations and…Jul 2, 20231Jul 2, 20231
