IT News For Australia Business

Critical Splunk bug propagates code execution

Splunk is warning of a critical vulnerability which endangers any endpoint subscribed to a Splunk deployment server. As the company explains here, Universal Forwarders are modules that collect client ...
GitHub

Brute-Force Detection in Windows with Splunk (MITRE ATT&CK T1110)

This repository contains a lab and detection pipeline for simulating brute-force attacks (MITRE ATT&CK T1110) against a Windows Server and analyzing Windows security events in Splunk. The project ...