SlideShare uma empresa Scribd logo

Latest Updates to Splunk from .conf 2017 Announcements

Transferir como PPTX, PDF
H
Harry McLaren

Session detailing some of the best announcements from the recent Splunk users conference. Delivered at the Splunk User Group in Edinburgh on October 16, 2017.

Dados e análise
1 de 29
© 2017 SPLUNK INC.© 2017 SPLUNK INC. Splunk User Group Edinburgh
© 2017 SPLUNK INC. Introduction - Harry McLaren ● Alumnus of Edinburgh Napier (Now a Mentor) ● Senior Security Consultant at ECS ● Leader of the Splunk User Group Edinburgh
© 2017 SPLUNK INC. Introduction to ECS Elite Splunk Partner - UK – Type: Security / IT Operations / Managed Services (SOC / Splunk) – Awards: Splunk Revolution Award & Splunk Partner of the Year
© 2017 SPLUNK INC. Agenda • Housekeeping: Event Overview & House Rules • Splunk Enterprise (Core) Updates from .conf • Splunk Security & IT Ops Updates from .conf • Other Splunk Updates from .conf
© 2017 SPLUNK INC. Splunk [Official] User Group “The overall goal is to create an authentic, ongoing user group experience for our users, where they contribute and get involved” ● User Lead Technical Discussions ● Sharing Environment ● Build Trust ● No Sales! ● We’re 1 year old, have 161 Members and this is our 7th event!
© 2017 SPLUNK INC. Splunk Enterprise Updates from .conf Harry McLaren
© 2017 SPLUNK INC. ▶ Metrics - which are sets of numerical, time series data are now treated as a first class data type bringing massive performance improvements such as up to 200x faster queries ▶ Event Annotation seamlessly unifies logs and metrics by overlaying multiple searches in a single time chart or graph ▶ Faster Data Model Acceleration through core search technology tweaks ▶ Self-Service App Management in the cloud has been updated to allow the installation of your organization’s own internal apps ▶ The latest Machine Learning Toolkit improves extensibility, scalability and ease of use through several new enhancements Splunk Enterprise Release 7.0 (Available Now)
© 2017 SPLUNK INC. Metrics and Events Two distinct machine data sources that have been hard to integrate…until now Metrics ▶ Numbers describing a particular process or activity ▶ Measured over intervals of time– i.e., time series data ▶ Common metrics sources: • System metrics (CPU, memory, disk) • Infrastructure metrics (AWS CloudWatch) • Web tracking scripts (Google Analytics) • Application agents (APM, error tracking) Events ▶ Immutable record of discrete events that happen over time ▶ Come in three forms: plain text, structured, binary ▶ Common event sources: • System and server logs (syslog, journald) • Firewall and intrusion detection system logs • Social media feeds (Twitter…) • Application, platform and server logs (log4j, log4net, Apache, MySQL, AWS) Timestamp Metric Name Value Dimensions 1481050800 os.cpu.user 42.12345 hq:us-west-1 Sample Metric [29/Aug/2017 08:47:05:316503] "POST /cart.do?uid=84e8d742-a31d69&action=remove&&product_id=BS- 2&JSESSIONID=SD6SAL4FF1ADFF9 HTTP 1.1" 200 2569 "http://www.buttercupenterprises.com/product.screen? product_id=BS-2" "Mozilla/5.0 (Intel Mac OS X 10_12_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2957.0 Safari/537.36" 98 Sample Log Equivalent to 1 metric value Monitor
© 2017 SPLUNK INC. ▶ 20x and beyond performance improvement for monitoring and alerting using metrics data ▶ Sample use cases: CPU utilization, temperature fluctuations in devices, app downloads ▶ All Splunk Platform benefits apply: • Visualizations and alerting • Role-based access controls • Data onboarding • Clustering, Scaling, Alerting • Leverage open source for existing sourcetypes (statsd, collectd) • Supports SaaS apps + legacy/on-premises systems Splunk Metrics Taking the meh out of metrics Metrics car telemetry dashboard– example of high volume data, large # of searches in one dashboard Monitor
© 2017 SPLUNK INC. ▶ Adds context to any time chart (e.g., line, column, area) ▶ Correlates logs and metrics in a single view ▶ Enables you to pull markers and labels from many sources (e.g., log data, lookup files, or external sources) Splunk Event Annotation Surfacing more visual insights from your data Investigate Metrics with Event Annotation
© 2017 SPLUNK INC. Splunk Event Annotation Surfacing more visual insights from your data Investigate
© 2017 SPLUNK INC. Splunk Event Annotation Surfacing more visual insights from your data Investigate Metrics with Event Annotation
© 2017 SPLUNK INC. ▶ New app management page allows for easier management, app updates, self- service installation and resolution of dynamic app dependencies. ▶ Support for most Splunk certified and internally built New in 7.0! apps and add-ons ▶ More robust app deployment with self- service action retries, and better restart notifications Splunk Cloud App Management App Management Interface for Splunk Cloud
© 2017 SPLUNK INC. Splunk Security & IT Ops Updates from .conf Harry McLaren
© 2017 SPLUNK INC. Splunk Enterprise Security Content Update (ESCU)
© 2017 SPLUNK INC. Splunk Enterprise Security Content Update (ESCU)
© 2017 SPLUNK INC. Splunk Enterprise Security Content Update (ESCU) Details: https://www.splunk.com/blog/2017/09/27/-ipsa-scientia-potestas-est-knowledge-is-power-splunk-enterprise-security-content-update.html
© 2017 SPLUNK INC. Splunk User Behavior Analytics (UBA) Release 4.0 Details: https://www.splunk.com/blog/2017/09/26/splunk-uba-the-ultimate-lego-for-machine-learning-models.html
© 2017 SPLUNK INC. ▶ Decrease event noise to produce human-scale actionable alerts. • Dynamically adapt thresholds to avoid being alerted on expected conditions. Use built-in statistical measurements to understand historical behavior, determine threshold variability patterns by hour, day, week or month, and baseline normal operations • Extract real-time correlations easily on your events and KPIs to reduce event clutter and complexity and overhead of managing rules • Detect abnormalities based on the learned normal operational patterns to highlight and alert on anomalies and outlier activity that need investigation and action ▶ Built-in integrations into your existing incident management and automation tools such as ServiceNow, BMC Remedy, Puppet, xMatters and PagerDuty. And you can build custom integrations easily with the power of the Splunk ITSI APIs. Splunk ITSI 3.0 Available 19th of October 2017 Details: https://www.splunk.com/blog/2017/09/27/announcing-splunk-itsi-3-0-the-easy-button-for-event-management.html
© 2017 SPLUNK INC. Manage the Incident, Not the Event Collect ALL data De-spam: Separate valuable signal from noise Add context: Prioritize resolution to ensure service availability Shared insights Collaborative response Data-enabled IT Intelligent operations SALES SSO CLAIMS
© 2017 SPLUNK INC. Splunk ITSI for Event Analytics Simplify Your Operations With Artificial Intelligence and Service Context Easy and Seamless Access to ALL Data at Scale • Collect any type of data, at any volume, from thousands of sources, in real time • Apply structure to data at search time for customizable pivots on your data • Identify issues before they impact the business Understand Your Business With Context • Model important services on relevant business and technical KPIs • Apply service context to events • Prioritize resolution of incidents that impact business service availability Derive Insights With Machine Learning • Detect patterns to determine normal vs. abnormal • Dynamically adapt thresholds and alerts on anomalous conditions • Group related events to highlight the ones that are most meaningful Enable Operational Efficiencies • Share understanding of issues across silos • Accelerate incident response and automation with built-in and custom integrations • Create custom dashboards for IT and business users on-the-fly and on demand Details: https://www.splunk.com/blog/2017/09/27/announcing-splunk-itsi-3-0-the-easy-button-for-event-management.html
© 2017 SPLUNK INC. Other Splunk Updates from .conf Harry McLaren
© 2017 SPLUNK INC. ▶ Model management fully integrated with Splunk's role-based access controls ▶ Out-of-the-box algorithms and parameter tuning added for forecasting time series data ▶ Re-factored API makes it easier to import custom algorithms, and export as SplunkbaseTM apps ▶ MLTK + Spark Integration for large-scale model training (beta) Splunk Machine Learning Toolkit 3.0 Guided and easy-to-use interface, modeling assistance and ready-to-use examples Build Intelligence Predict Numeric Fields Detect Numeric Outliers Forecast Time Series Cluster Numeric Events
© 2017 SPLUNK INC. Splunk Bucketlist https://bucketlist.splunk.com/
© 2017 SPLUNK INC. Splunk Security Essentials for Fraud Detection https://splunkbase.splunk.com/app/3693/
© 2017 SPLUNK INC. Config Quest https://splunkbase.splunk.com/app/3696/
© 2017 SPLUNK INC. Config Quest https://splunkbase.splunk.com/app/3696/
© 2017 SPLUNK INC. Get Involved! ● Splunk User Group Edinburgh – https://usergroups.splunk.com/group/splunk-user-group-edinburgh.html – https://www.linkedin.com/groups/12013212 ● Splunk’s Slack Group – Register via http://splunk-usergroups.signup.team/ – Channel: #edinburgh ● Present & Share at the User Group? Connect: ‣ Harry McLaren | harry.mclaren@ecs.co.uk | @cyberharibu | harrymclaren.co.uk ‣ ECS | enquiries@ecs.co.uk | @ECS_IT | ecs.co.uk
© 2017 SPLUNK INC.© 2017 SPLUNK INC. Thank You

Recomendados

Securing the Enterprise/Cloud with Splunk at the Centre
Securing the Enterprise/Cloud with Splunk at the CentreSecuring the Enterprise/Cloud with Splunk at the Centre
Securing the Enterprise/Cloud with Splunk at the Centre
Harry McLaren
 
Getting Started with Splunk Observability September 8, 2021
Getting Started with Splunk Observability September 8, 2021Getting Started with Splunk Observability September 8, 2021
Getting Started with Splunk Observability September 8, 2021
Becky Burwell
 
AWS on Splunk, Splunk on AWS
AWS on Splunk, Splunk on AWSAWS on Splunk, Splunk on AWS
AWS on Splunk, Splunk on AWS
Splunk
 
Getting Started with Splunk Enterprise
Getting Started with Splunk EnterpriseGetting Started with Splunk Enterprise
Getting Started with Splunk Enterprise
Splunk
 
Splunk Cloud
Splunk CloudSplunk Cloud
Splunk Cloud
Splunk
 
Danfoss - Splunk for Vulnerability Management
Danfoss - Splunk for Vulnerability ManagementDanfoss - Splunk for Vulnerability Management
Danfoss - Splunk for Vulnerability Management
Splunk
 
Webinar: Improve Splunk Analytics and Automate Processes with SnapLogic
Webinar: Improve Splunk Analytics and Automate Processes with SnapLogicWebinar: Improve Splunk Analytics and Automate Processes with SnapLogic
Webinar: Improve Splunk Analytics and Automate Processes with SnapLogic
SnapLogic
 
AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...
AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...
AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...
Sumo Logic
 

Recomendados

Securing the Enterprise/Cloud with Splunk at the Centre
Securing the Enterprise/Cloud with Splunk at the CentreSecuring the Enterprise/Cloud with Splunk at the Centre
Securing the Enterprise/Cloud with Splunk at the Centre
Harry McLaren
 
Getting Started with Splunk Observability September 8, 2021
Getting Started with Splunk Observability September 8, 2021Getting Started with Splunk Observability September 8, 2021
Getting Started with Splunk Observability September 8, 2021
Becky Burwell
 
AWS on Splunk, Splunk on AWS
AWS on Splunk, Splunk on AWSAWS on Splunk, Splunk on AWS
AWS on Splunk, Splunk on AWS
Splunk
 
Getting Started with Splunk Enterprise
Getting Started with Splunk EnterpriseGetting Started with Splunk Enterprise
Getting Started with Splunk Enterprise
Splunk
 
Splunk Cloud
Splunk CloudSplunk Cloud
Splunk Cloud
Splunk
 
Danfoss - Splunk for Vulnerability Management
Danfoss - Splunk for Vulnerability ManagementDanfoss - Splunk for Vulnerability Management
Danfoss - Splunk for Vulnerability Management
Splunk
 
Webinar: Improve Splunk Analytics and Automate Processes with SnapLogic
Webinar: Improve Splunk Analytics and Automate Processes with SnapLogicWebinar: Improve Splunk Analytics and Automate Processes with SnapLogic
Webinar: Improve Splunk Analytics and Automate Processes with SnapLogic
SnapLogic
 
AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...
AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...
AWS and Sumo Logic Webinar: Simplify Compliance with Proactive Machine Data A...
Sumo Logic
 
Splunk at Airbus
Splunk at AirbusSplunk at Airbus
Splunk at Airbus
Splunk
 
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
Sumo Logic
 
SplunkLive! Munich 2018: Siemens Security Use Case
SplunkLive! Munich 2018: Siemens Security Use CaseSplunkLive! Munich 2018: Siemens Security Use Case
SplunkLive! Munich 2018: Siemens Security Use Case
Splunk
 
Intermedia Customer Presentation
Intermedia Customer PresentationIntermedia Customer Presentation
Intermedia Customer Presentation
Splunk
 
Splunk FISMA for Continuous Monitoring
Splunk FISMA for Continuous Monitoring Splunk FISMA for Continuous Monitoring
Splunk FISMA for Continuous Monitoring
Greg Hanchin
 
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
Harry McLaren
 
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore) Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Harry McLaren
 
.conf21 Recommended Sessions
.conf21 Recommended Sessions.conf21 Recommended Sessions
.conf21 Recommended Sessions
Splunk
 
Splunk Discovery: Warsaw 2018 - IT Operations Track
Splunk Discovery: Warsaw 2018 - IT Operations TrackSplunk Discovery: Warsaw 2018 - IT Operations Track
Splunk Discovery: Warsaw 2018 - IT Operations Track
Splunk
 
Overview of Blue Medora - New Relic Plugin for Nutanix
Overview of Blue Medora - New Relic Plugin for NutanixOverview of Blue Medora - New Relic Plugin for Nutanix
Overview of Blue Medora - New Relic Plugin for Nutanix
Blue Medora
 
Remediate and secure your organization with azure sentinel
Remediate and secure your organization with azure sentinelRemediate and secure your organization with azure sentinel
Remediate and secure your organization with azure sentinel
Samik Roy
 
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Techorama Belgium 2019 - Building an Azure Governance model for the EnterpriseTechorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Karl Ots
 
Overview of Blue Medora - New Relic Plugin for Cisco UCS
Overview of Blue Medora - New Relic Plugin for Cisco UCSOverview of Blue Medora - New Relic Plugin for Cisco UCS
Overview of Blue Medora - New Relic Plugin for Cisco UCS
Blue Medora
 
Catch these Sessions on-demand at .conf Online
Catch these Sessions on-demand at .conf OnlineCatch these Sessions on-demand at .conf Online
Catch these Sessions on-demand at .conf Online
Splunk
 
Splunk Cloud
Splunk CloudSplunk Cloud
Splunk Cloud
Splunk
 
Combining Logs, Metrics, and Traces for Unified Observability
Combining Logs, Metrics, and Traces for Unified ObservabilityCombining Logs, Metrics, and Traces for Unified Observability
Combining Logs, Metrics, and Traces for Unified Observability
Elasticsearch
 
DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...
DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...
DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...
Cisco DevNet
 
SplunkLive! Utrecht 2019: NN Group
SplunkLive! Utrecht 2019: NN Group SplunkLive! Utrecht 2019: NN Group
SplunkLive! Utrecht 2019: NN Group
Splunk
 
Multi cloud governance best practices - AWS, Azure, GCP
Multi cloud governance best practices - AWS, Azure, GCPMulti cloud governance best practices - AWS, Azure, GCP
Multi cloud governance best practices - AWS, Azure, GCP
Faiza Mehar
 
Splunk Forum Frankfurt - 15th Nov 2017 - .conf2017 Update
Splunk Forum Frankfurt - 15th Nov 2017 - .conf2017 UpdateSplunk Forum Frankfurt - 15th Nov 2017 - .conf2017 Update
Splunk Forum Frankfurt - 15th Nov 2017 - .conf2017 Update
Splunk
 
SplunkLive! Zurich 2018: Integrating Metrics and Logs
SplunkLive! Zurich 2018: Integrating Metrics and LogsSplunkLive! Zurich 2018: Integrating Metrics and Logs
SplunkLive! Zurich 2018: Integrating Metrics and Logs
Splunk
 
SplunkLive! Frankfurt 2018 - Integrating Metrics & Logs
SplunkLive! Frankfurt 2018 - Integrating Metrics & LogsSplunkLive! Frankfurt 2018 - Integrating Metrics & Logs
SplunkLive! Frankfurt 2018 - Integrating Metrics & Logs
Splunk
 

Mais conteúdo relacionado

Mais procurados

How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
Sumo Logic
 
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
Harry McLaren
 
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Techorama Belgium 2019 - Building an Azure Governance model for the EnterpriseTechorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Karl Ots
 

Mais procurados (19)

Splunk at Airbus
Splunk at AirbusSplunk at Airbus
Splunk at Airbus
 
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
How McGraw Hill Uses Sumo Logic and AWS for Operational and Security Intellig...
 
SplunkLive! Munich 2018: Siemens Security Use Case
SplunkLive! Munich 2018: Siemens Security Use CaseSplunkLive! Munich 2018: Siemens Security Use Case
SplunkLive! Munich 2018: Siemens Security Use Case
 
Intermedia Customer Presentation
Intermedia Customer PresentationIntermedia Customer Presentation
Intermedia Customer Presentation
 
Splunk FISMA for Continuous Monitoring
Splunk FISMA for Continuous Monitoring Splunk FISMA for Continuous Monitoring
Splunk FISMA for Continuous Monitoring
 
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
SplDevOps: Making Splunk Development a Breeze With a Deep Dive on DevOps' Con...
 
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore) Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
 
.conf21 Recommended Sessions
.conf21 Recommended Sessions.conf21 Recommended Sessions
.conf21 Recommended Sessions
 
Splunk Discovery: Warsaw 2018 - IT Operations Track
Splunk Discovery: Warsaw 2018 - IT Operations TrackSplunk Discovery: Warsaw 2018 - IT Operations Track
Splunk Discovery: Warsaw 2018 - IT Operations Track
 
Overview of Blue Medora - New Relic Plugin for Nutanix
Overview of Blue Medora - New Relic Plugin for NutanixOverview of Blue Medora - New Relic Plugin for Nutanix
Overview of Blue Medora - New Relic Plugin for Nutanix
 
Remediate and secure your organization with azure sentinel
Remediate and secure your organization with azure sentinelRemediate and secure your organization with azure sentinel
Remediate and secure your organization with azure sentinel
 
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Techorama Belgium 2019 - Building an Azure Governance model for the EnterpriseTechorama Belgium 2019 - Building an Azure Governance model for the Enterprise
Techorama Belgium 2019 - Building an Azure Governance model for the Enterprise
 
Overview of Blue Medora - New Relic Plugin for Cisco UCS
Overview of Blue Medora - New Relic Plugin for Cisco UCSOverview of Blue Medora - New Relic Plugin for Cisco UCS
Overview of Blue Medora - New Relic Plugin for Cisco UCS
 
Catch these Sessions on-demand at .conf Online
Catch these Sessions on-demand at .conf OnlineCatch these Sessions on-demand at .conf Online
Catch these Sessions on-demand at .conf Online
 
Splunk Cloud
Splunk CloudSplunk Cloud
Splunk Cloud
 
Combining Logs, Metrics, and Traces for Unified Observability
Combining Logs, Metrics, and Traces for Unified ObservabilityCombining Logs, Metrics, and Traces for Unified Observability
Combining Logs, Metrics, and Traces for Unified Observability
 
DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...
DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...
DEVNET-1123 CSTA - Cisco Security Technical Alliances, New Program for Ecosys...
 
SplunkLive! Utrecht 2019: NN Group
SplunkLive! Utrecht 2019: NN Group SplunkLive! Utrecht 2019: NN Group
SplunkLive! Utrecht 2019: NN Group
 
Multi cloud governance best practices - AWS, Azure, GCP
Multi cloud governance best practices - AWS, Azure, GCPMulti cloud governance best practices - AWS, Azure, GCP
Multi cloud governance best practices - AWS, Azure, GCP
 

Semelhante a Latest Updates to Splunk from .conf 2017 Announcements

SplunkLive! London 2017 - Happy Apps, Happy Users
SplunkLive! London 2017 - Happy Apps, Happy UsersSplunkLive! London 2017 - Happy Apps, Happy Users
SplunkLive! London 2017 - Happy Apps, Happy Users
Splunk
 
SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...
SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...
SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...
Splunk
 
SplunkLive! Zurich 2017 - Advanced Analytics / Machine Learning
SplunkLive! Zurich 2017 - Advanced Analytics / Machine LearningSplunkLive! Zurich 2017 - Advanced Analytics / Machine Learning
SplunkLive! Zurich 2017 - Advanced Analytics / Machine Learning
Splunk
 
Machine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into InsightMachine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into Insight
Splunk
 
Machine Data Is EVERYWHERE: Use It for Testing
Machine Data Is EVERYWHERE: Use It for TestingMachine Data Is EVERYWHERE: Use It for Testing
Machine Data Is EVERYWHERE: Use It for Testing
TechWell
 
Machine Data 101
Machine Data 101Machine Data 101
Machine Data 101
Splunk
 

Semelhante a Latest Updates to Splunk from .conf 2017 Announcements (20)

Splunk Forum Frankfurt - 15th Nov 2017 - .conf2017 Update
Splunk Forum Frankfurt - 15th Nov 2017 - .conf2017 UpdateSplunk Forum Frankfurt - 15th Nov 2017 - .conf2017 Update
Splunk Forum Frankfurt - 15th Nov 2017 - .conf2017 Update
 
SplunkLive! Zurich 2018: Integrating Metrics and Logs
SplunkLive! Zurich 2018: Integrating Metrics and LogsSplunkLive! Zurich 2018: Integrating Metrics and Logs
SplunkLive! Zurich 2018: Integrating Metrics and Logs
 
SplunkLive! Frankfurt 2018 - Integrating Metrics & Logs
SplunkLive! Frankfurt 2018 - Integrating Metrics & LogsSplunkLive! Frankfurt 2018 - Integrating Metrics & Logs
SplunkLive! Frankfurt 2018 - Integrating Metrics & Logs
 
Splunk
SplunkSplunk
Splunk
 
Splunk Data Onboarding Overview - Splunk Data Collection Architecture
Splunk Data Onboarding Overview - Splunk Data Collection ArchitectureSplunk Data Onboarding Overview - Splunk Data Collection Architecture
Splunk Data Onboarding Overview - Splunk Data Collection Architecture
 
Splunk Discovery: Milan 2018 - Delivering New Visibility and Analytics for IT...
Splunk Discovery: Milan 2018 - Delivering New Visibility and Analytics for IT...Splunk Discovery: Milan 2018 - Delivering New Visibility and Analytics for IT...
Splunk Discovery: Milan 2018 - Delivering New Visibility and Analytics for IT...
 
SplunkLive! Munich 2018: Integrating Metrics and Logs
SplunkLive! Munich 2018: Integrating Metrics and LogsSplunkLive! Munich 2018: Integrating Metrics and Logs
SplunkLive! Munich 2018: Integrating Metrics and Logs
 
SplunkLive! London 2017 - Happy Apps, Happy Users
SplunkLive! London 2017 - Happy Apps, Happy UsersSplunkLive! London 2017 - Happy Apps, Happy Users
SplunkLive! London 2017 - Happy Apps, Happy Users
 
SplunkLive! London 2017 - DevOps Powered by Splunk
SplunkLive! London 2017 - DevOps Powered by SplunkSplunkLive! London 2017 - DevOps Powered by Splunk
SplunkLive! London 2017 - DevOps Powered by Splunk
 
SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...
SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...
SplunkLive! Zurich 2018: Use Splunk for Incident Response, Orchestration and ...
 
SplunkLive! Zurich 2017 - Advanced Analytics / Machine Learning
SplunkLive! Zurich 2017 - Advanced Analytics / Machine LearningSplunkLive! Zurich 2017 - Advanced Analytics / Machine Learning
SplunkLive! Zurich 2017 - Advanced Analytics / Machine Learning
 
Machine Data 101 Workshop
Machine Data 101 Workshop Machine Data 101 Workshop
Machine Data 101 Workshop
 
Splunk workshop-Machine Data 101
Splunk workshop-Machine Data 101Splunk workshop-Machine Data 101
Splunk workshop-Machine Data 101
 
Splunk ITOA Roundtable - Zurich: 30th November 2017
Splunk ITOA Roundtable - Zurich: 30th November 2017Splunk ITOA Roundtable - Zurich: 30th November 2017
Splunk ITOA Roundtable - Zurich: 30th November 2017
 
Machine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into InsightMachine Data 101: Turning Data Into Insight
Machine Data 101: Turning Data Into Insight
 
Splunk .conf18 Updates, Config Add-on, SplDevOps
Splunk .conf18 Updates, Config Add-on, SplDevOpsSplunk .conf18 Updates, Config Add-on, SplDevOps
Splunk .conf18 Updates, Config Add-on, SplDevOps
 
Machine Data Is EVERYWHERE: Use It for Testing
Machine Data Is EVERYWHERE: Use It for TestingMachine Data Is EVERYWHERE: Use It for Testing
Machine Data Is EVERYWHERE: Use It for Testing
 
Alle Neuigkeiten im letzten Plattform Release
Alle Neuigkeiten im letzten Plattform ReleaseAlle Neuigkeiten im letzten Plattform Release
Alle Neuigkeiten im letzten Plattform Release
 
SplunkLive! Zurich 2018: Monitoring the End User Experience with Splunk
SplunkLive! Zurich 2018: Monitoring the End User Experience with SplunkSplunkLive! Zurich 2018: Monitoring the End User Experience with Splunk
SplunkLive! Zurich 2018: Monitoring the End User Experience with Splunk
 
Machine Data 101
Machine Data 101Machine Data 101
Machine Data 101
 

Mais de Harry McLaren

Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...
Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...
Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...
Harry McLaren
 
Hunting Hard & Failing Fast (ScotSoft 2019)
Hunting Hard & Failing Fast (ScotSoft 2019)Hunting Hard & Failing Fast (ScotSoft 2019)
Hunting Hard & Failing Fast (ScotSoft 2019)
Harry McLaren
 

Mais de Harry McLaren (20)

Security Operations, MITRE ATT&CK, SOC Roles / Competencies
Security Operations, MITRE ATT&CK, SOC Roles / Competencies Security Operations, MITRE ATT&CK, SOC Roles / Competencies
Security Operations, MITRE ATT&CK, SOC Roles / Competencies
 
Modern Security Operations & Common Roles/Competencies
Modern Security Operations & Common Roles/Competencies Modern Security Operations & Common Roles/Competencies
Modern Security Operations & Common Roles/Competencies
 
Becoming a Defender (Blue Teams FTW!)
Becoming a Defender (Blue Teams FTW!)Becoming a Defender (Blue Teams FTW!)
Becoming a Defender (Blue Teams FTW!)
 
Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...
Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...
Virtual Splunk User Group - Phantom Workbook Automation & Threat Hunting with...
 
SOC Fundamental Roles & Skills
SOC Fundamental Roles & SkillsSOC Fundamental Roles & Skills
SOC Fundamental Roles & Skills
 
Hunting Hard & Failing Fast (ScotSoft 2019)
Hunting Hard & Failing Fast (ScotSoft 2019)Hunting Hard & Failing Fast (ScotSoft 2019)
Hunting Hard & Failing Fast (ScotSoft 2019)
 
Splunk Phantom, the Endpoint Data Model & Splunk Security Essentials App!
Splunk Phantom, the Endpoint Data Model & Splunk Security Essentials App!Splunk Phantom, the Endpoint Data Model & Splunk Security Essentials App!
Splunk Phantom, the Endpoint Data Model & Splunk Security Essentials App!
 
Using Metrics for Fun, Developing with the KV Store + Javascript & News from ...
Using Metrics for Fun, Developing with the KV Store + Javascript & News from ...Using Metrics for Fun, Developing with the KV Store + Javascript & News from ...
Using Metrics for Fun, Developing with the KV Store + Javascript & News from ...
 
Lessons on Human Vulnerability within InfoSec/Cyber
Lessons on Human Vulnerability within InfoSec/CyberLessons on Human Vulnerability within InfoSec/Cyber
Lessons on Human Vulnerability within InfoSec/Cyber
 
Big Data For Threat Detection & Response
Big Data For Threat Detection & ResponseBig Data For Threat Detection & Response
Big Data For Threat Detection & Response
 
OWASP - Analyst, Engineer or Consultant?
OWASP - Analyst, Engineer or Consultant?OWASP - Analyst, Engineer or Consultant?
OWASP - Analyst, Engineer or Consultant?
 
TSTAS, the Life of a Splunk Trainer and using DevOps in Splunk Development
TSTAS, the Life of a Splunk Trainer and using DevOps in Splunk DevelopmentTSTAS, the Life of a Splunk Trainer and using DevOps in Splunk Development
TSTAS, the Life of a Splunk Trainer and using DevOps in Splunk Development
 
Cyber Scotland Connect: What is Security Engineering?
Cyber Scotland Connect: What is Security Engineering?Cyber Scotland Connect: What is Security Engineering?
Cyber Scotland Connect: What is Security Engineering?
 
Cyber Scotland Connect: Getting into Cybersecurity (Deck 2)
Cyber Scotland Connect: Getting into Cybersecurity (Deck 2)Cyber Scotland Connect: Getting into Cybersecurity (Deck 2)
Cyber Scotland Connect: Getting into Cybersecurity (Deck 2)
 
Cyber Scotland Connect: Getting into Cybersecurity (Deck 1)
Cyber Scotland Connect: Getting into Cybersecurity (Deck 1)Cyber Scotland Connect: Getting into Cybersecurity (Deck 1)
Cyber Scotland Connect: Getting into Cybersecurity (Deck 1)
 
Cyber Scotland Connect: Welcome & Purpose Statement
Cyber Scotland Connect: Welcome & Purpose StatementCyber Scotland Connect: Welcome & Purpose Statement
Cyber Scotland Connect: Welcome & Purpose Statement
 
Security Meetup Scotland - August 2017 (Deconstructing SIEM)
Security Meetup Scotland - August 2017 (Deconstructing SIEM)Security Meetup Scotland - August 2017 (Deconstructing SIEM)
Security Meetup Scotland - August 2017 (Deconstructing SIEM)
 
Deconstructing SIEM
Deconstructing SIEMDeconstructing SIEM
Deconstructing SIEM
 
Supporting Splunk at Scale, Splunking at Home & Introduction to Enterprise Se...
Supporting Splunk at Scale, Splunking at Home & Introduction to Enterprise Se...Supporting Splunk at Scale, Splunking at Home & Introduction to Enterprise Se...
Supporting Splunk at Scale, Splunking at Home & Introduction to Enterprise Se...
 
Building Splunk Apps, Development Paths with Splunk & User Behaviour Analytics
Building Splunk Apps, Development Paths with Splunk & User Behaviour Analytics Building Splunk Apps, Development Paths with Splunk & User Behaviour Analytics
Building Splunk Apps, Development Paths with Splunk & User Behaviour Analytics
 

Último

Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...
Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...
Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...
amitlee9823
 
➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...
➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...
➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...
amitlee9823
 
Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...
only4webmaster01
 
➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...
➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...
➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...
amitlee9823
 
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Delhi Call girls
 
Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
amitlee9823
 
Probability Grade 10 Third Quarter Lessons
Probability Grade 10 Third Quarter LessonsProbability Grade 10 Third Quarter Lessons
Probability Grade 10 Third Quarter Lessons
JoseMangaJr1
 
BDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort Service
BDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort ServiceBDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort Service
BDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort Service
Delhi Call girls
 
Predicting Loan Approval: A Data Science Project
Predicting Loan Approval: A Data Science ProjectPredicting Loan Approval: A Data Science Project
Predicting Loan Approval: A Data Science Project
Boston Institute of Analytics
 
Cheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 night
Cheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 nightCheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 night
Cheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 night
Delhi Call girls
 
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
amitlee9823
 
(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7
(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7
(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
FESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdfFESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdf
MarinCaroMartnezBerg
 
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts ServiceCall Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
Call Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
amitlee9823
 

Último (20)

Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...
Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...
Chintamani Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore ...
 
Midocean dropshipping via API with DroFx
Midocean dropshipping via API with DroFxMidocean dropshipping via API with DroFx
Midocean dropshipping via API with DroFx
 
Call me @ 9892124323 Cheap Rate Call Girls in Vashi with Real Photo 100% Secure
Call me @ 9892124323 Cheap Rate Call Girls in Vashi with Real Photo 100% SecureCall me @ 9892124323 Cheap Rate Call Girls in Vashi with Real Photo 100% Secure
Call me @ 9892124323 Cheap Rate Call Girls in Vashi with Real Photo 100% Secure
 
➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...
➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...
➥🔝 7737669865 🔝▻ malwa Call-girls in Women Seeking Men 🔝malwa🔝 Escorts Ser...
 
Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...
Call Girls Indiranagar Just Call 👗 9155563397 👗 Top Class Call Girl Service B...
 
➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...
➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...
➥🔝 7737669865 🔝▻ Bangalore Call-girls in Women Seeking Men 🔝Bangalore🔝 Esc...
 
Anomaly detection and data imputation within time series
Anomaly detection and data imputation within time seriesAnomaly detection and data imputation within time series
Anomaly detection and data imputation within time series
 
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
Call Girls in Sarai Kale Khan Delhi 💯 Call Us 🔝9205541914 🔝( Delhi) Escorts S...
 
Invezz.com - Grow your wealth with trading signals
Invezz.com - Grow your wealth with trading signalsInvezz.com - Grow your wealth with trading signals
Invezz.com - Grow your wealth with trading signals
 
Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
Call Girls Jalahalli Just Call 👗 7737669865 👗 Top Class Call Girl Service Ban...
 
Probability Grade 10 Third Quarter Lessons
Probability Grade 10 Third Quarter LessonsProbability Grade 10 Third Quarter Lessons
Probability Grade 10 Third Quarter Lessons
 
BDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort Service
BDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort ServiceBDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort Service
BDSM⚡Call Girls in Mandawali Delhi >༒8448380779 Escort Service
 
Predicting Loan Approval: A Data Science Project
Predicting Loan Approval: A Data Science ProjectPredicting Loan Approval: A Data Science Project
Predicting Loan Approval: A Data Science Project
 
Mature dropshipping via API with DroFx.pptx
Mature dropshipping via API with DroFx.pptxMature dropshipping via API with DroFx.pptx
Mature dropshipping via API with DroFx.pptx
 
Cheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 night
Cheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 nightCheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 night
Cheap Rate Call girls Sarita Vihar Delhi 9205541914 shot 1500 night
 
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
Call Girls Hsr Layout Just Call 👗 7737669865 👗 Top Class Call Girl Service Ba...
 
(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7
(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7
(NEHA) Call Girls Katra Call Now 8617697112 Katra Escorts 24x7
 
FESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdfFESE Capital Markets Fact Sheet 2024 Q1.pdf
FESE Capital Markets Fact Sheet 2024 Q1.pdf
 
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts ServiceCall Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
Call Girls In Shalimar Bagh ( Delhi) 9953330565 Escorts Service
 
Call Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Begur Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
 

Latest Updates to Splunk from .conf 2017 Announcements

  • 1. © 2017 SPLUNK INC.© 2017 SPLUNK INC. Splunk User Group Edinburgh
  • 2. © 2017 SPLUNK INC. Introduction - Harry McLaren ● Alumnus of Edinburgh Napier (Now a Mentor) ● Senior Security Consultant at ECS ● Leader of the Splunk User Group Edinburgh
  • 3. © 2017 SPLUNK INC. Introduction to ECS Elite Splunk Partner - UK – Type: Security / IT Operations / Managed Services (SOC / Splunk) – Awards: Splunk Revolution Award & Splunk Partner of the Year
  • 4. © 2017 SPLUNK INC. Agenda • Housekeeping: Event Overview & House Rules • Splunk Enterprise (Core) Updates from .conf • Splunk Security & IT Ops Updates from .conf • Other Splunk Updates from .conf
  • 5. © 2017 SPLUNK INC. Splunk [Official] User Group “The overall goal is to create an authentic, ongoing user group experience for our users, where they contribute and get involved” ● User Lead Technical Discussions ● Sharing Environment ● Build Trust ● No Sales! ● We’re 1 year old, have 161 Members and this is our 7th event!
  • 6. © 2017 SPLUNK INC. Splunk Enterprise Updates from .conf Harry McLaren
  • 7. © 2017 SPLUNK INC. ▶ Metrics - which are sets of numerical, time series data are now treated as a first class data type bringing massive performance improvements such as up to 200x faster queries ▶ Event Annotation seamlessly unifies logs and metrics by overlaying multiple searches in a single time chart or graph ▶ Faster Data Model Acceleration through core search technology tweaks ▶ Self-Service App Management in the cloud has been updated to allow the installation of your organization’s own internal apps ▶ The latest Machine Learning Toolkit improves extensibility, scalability and ease of use through several new enhancements Splunk Enterprise Release 7.0 (Available Now)
  • 8. © 2017 SPLUNK INC. Metrics and Events Two distinct machine data sources that have been hard to integrate…until now Metrics ▶ Numbers describing a particular process or activity ▶ Measured over intervals of time– i.e., time series data ▶ Common metrics sources: • System metrics (CPU, memory, disk) • Infrastructure metrics (AWS CloudWatch) • Web tracking scripts (Google Analytics) • Application agents (APM, error tracking) Events ▶ Immutable record of discrete events that happen over time ▶ Come in three forms: plain text, structured, binary ▶ Common event sources: • System and server logs (syslog, journald) • Firewall and intrusion detection system logs • Social media feeds (Twitter…) • Application, platform and server logs (log4j, log4net, Apache, MySQL, AWS) Timestamp Metric Name Value Dimensions 1481050800 os.cpu.user 42.12345 hq:us-west-1 Sample Metric [29/Aug/2017 08:47:05:316503] "POST /cart.do?uid=84e8d742-a31d69&action=remove&&product_id=BS- 2&JSESSIONID=SD6SAL4FF1ADFF9 HTTP 1.1" 200 2569 "http://www.buttercupenterprises.com/product.screen? product_id=BS-2" "Mozilla/5.0 (Intel Mac OS X 10_12_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2957.0 Safari/537.36" 98 Sample Log Equivalent to 1 metric value Monitor
  • 9. © 2017 SPLUNK INC. ▶ 20x and beyond performance improvement for monitoring and alerting using metrics data ▶ Sample use cases: CPU utilization, temperature fluctuations in devices, app downloads ▶ All Splunk Platform benefits apply: • Visualizations and alerting • Role-based access controls • Data onboarding • Clustering, Scaling, Alerting • Leverage open source for existing sourcetypes (statsd, collectd) • Supports SaaS apps + legacy/on-premises systems Splunk Metrics Taking the meh out of metrics Metrics car telemetry dashboard– example of high volume data, large # of searches in one dashboard Monitor
  • 10. © 2017 SPLUNK INC. ▶ Adds context to any time chart (e.g., line, column, area) ▶ Correlates logs and metrics in a single view ▶ Enables you to pull markers and labels from many sources (e.g., log data, lookup files, or external sources) Splunk Event Annotation Surfacing more visual insights from your data Investigate Metrics with Event Annotation
  • 11. © 2017 SPLUNK INC. Splunk Event Annotation Surfacing more visual insights from your data Investigate
  • 12. © 2017 SPLUNK INC. Splunk Event Annotation Surfacing more visual insights from your data Investigate Metrics with Event Annotation
  • 13. © 2017 SPLUNK INC. ▶ New app management page allows for easier management, app updates, self- service installation and resolution of dynamic app dependencies. ▶ Support for most Splunk certified and internally built New in 7.0! apps and add-ons ▶ More robust app deployment with self- service action retries, and better restart notifications Splunk Cloud App Management App Management Interface for Splunk Cloud
  • 14. © 2017 SPLUNK INC. Splunk Security & IT Ops Updates from .conf Harry McLaren
  • 15. © 2017 SPLUNK INC. Splunk Enterprise Security Content Update (ESCU)
  • 16. © 2017 SPLUNK INC. Splunk Enterprise Security Content Update (ESCU)
  • 17. © 2017 SPLUNK INC. Splunk Enterprise Security Content Update (ESCU) Details: https://www.splunk.com/blog/2017/09/27/-ipsa-scientia-potestas-est-knowledge-is-power-splunk-enterprise-security-content-update.html
  • 18. © 2017 SPLUNK INC. Splunk User Behavior Analytics (UBA) Release 4.0 Details: https://www.splunk.com/blog/2017/09/26/splunk-uba-the-ultimate-lego-for-machine-learning-models.html
  • 19. © 2017 SPLUNK INC. ▶ Decrease event noise to produce human-scale actionable alerts. • Dynamically adapt thresholds to avoid being alerted on expected conditions. Use built-in statistical measurements to understand historical behavior, determine threshold variability patterns by hour, day, week or month, and baseline normal operations • Extract real-time correlations easily on your events and KPIs to reduce event clutter and complexity and overhead of managing rules • Detect abnormalities based on the learned normal operational patterns to highlight and alert on anomalies and outlier activity that need investigation and action ▶ Built-in integrations into your existing incident management and automation tools such as ServiceNow, BMC Remedy, Puppet, xMatters and PagerDuty. And you can build custom integrations easily with the power of the Splunk ITSI APIs. Splunk ITSI 3.0 Available 19th of October 2017 Details: https://www.splunk.com/blog/2017/09/27/announcing-splunk-itsi-3-0-the-easy-button-for-event-management.html
  • 20. © 2017 SPLUNK INC. Manage the Incident, Not the Event Collect ALL data De-spam: Separate valuable signal from noise Add context: Prioritize resolution to ensure service availability Shared insights Collaborative response Data-enabled IT Intelligent operations SALES SSO CLAIMS
  • 21. © 2017 SPLUNK INC. Splunk ITSI for Event Analytics Simplify Your Operations With Artificial Intelligence and Service Context Easy and Seamless Access to ALL Data at Scale • Collect any type of data, at any volume, from thousands of sources, in real time • Apply structure to data at search time for customizable pivots on your data • Identify issues before they impact the business Understand Your Business With Context • Model important services on relevant business and technical KPIs • Apply service context to events • Prioritize resolution of incidents that impact business service availability Derive Insights With Machine Learning • Detect patterns to determine normal vs. abnormal • Dynamically adapt thresholds and alerts on anomalous conditions • Group related events to highlight the ones that are most meaningful Enable Operational Efficiencies • Share understanding of issues across silos • Accelerate incident response and automation with built-in and custom integrations • Create custom dashboards for IT and business users on-the-fly and on demand Details: https://www.splunk.com/blog/2017/09/27/announcing-splunk-itsi-3-0-the-easy-button-for-event-management.html
  • 22. © 2017 SPLUNK INC. Other Splunk Updates from .conf Harry McLaren
  • 23. © 2017 SPLUNK INC. ▶ Model management fully integrated with Splunk's role-based access controls ▶ Out-of-the-box algorithms and parameter tuning added for forecasting time series data ▶ Re-factored API makes it easier to import custom algorithms, and export as SplunkbaseTM apps ▶ MLTK + Spark Integration for large-scale model training (beta) Splunk Machine Learning Toolkit 3.0 Guided and easy-to-use interface, modeling assistance and ready-to-use examples Build Intelligence Predict Numeric Fields Detect Numeric Outliers Forecast Time Series Cluster Numeric Events
  • 24. © 2017 SPLUNK INC. Splunk Bucketlist https://bucketlist.splunk.com/
  • 25. © 2017 SPLUNK INC. Splunk Security Essentials for Fraud Detection https://splunkbase.splunk.com/app/3693/
  • 26. © 2017 SPLUNK INC. Config Quest https://splunkbase.splunk.com/app/3696/
  • 27. © 2017 SPLUNK INC. Config Quest https://splunkbase.splunk.com/app/3696/
  • 28. © 2017 SPLUNK INC. Get Involved! ● Splunk User Group Edinburgh – https://usergroups.splunk.com/group/splunk-user-group-edinburgh.html – https://www.linkedin.com/groups/12013212 ● Splunk’s Slack Group – Register via http://splunk-usergroups.signup.team/ – Channel: #edinburgh ● Present & Share at the User Group? Connect: ‣ Harry McLaren | harry.mclaren@ecs.co.uk | @cyberharibu | harrymclaren.co.uk ‣ ECS | enquiries@ecs.co.uk | @ECS_IT | ecs.co.uk
  • 29. © 2017 SPLUNK INC.© 2017 SPLUNK INC. Thank You

Notas do Editor

  1. With Splunk Enterprise 7.0 and the latest Splunk solutions, it will be much easier to work with metrics, which are sets of numerical, time series data used to track a particular process or activity. You might think, “Splunk has always dealt with metrics.”  We’re all familiar with graphs and charts in Splunk. Let me explain how this is different with Splunk Enterprise 7.0.
  2. Splunk was initially designed for people who are trying to find something in a mess of unstructured data (the needle in a haystack). What about the scenario when you know what you’re looking for and where to look - like temperature fluctuations in a car, or CPU utilization over time (or the weight of all the straws in a haystack) - and you simply need to find this information quickly? We’ve rebuilt the Splunk engine to enable you to achieve this velocity. With Splunk Enterprise 7.0, metrics are now supported as first-class data. Use of the new metrics index boosts the speed of monitoring and alerting by at least 20X versus previous releases. This new support for metrics in Splunk Enterprise 7 enables faster, easier machine data analytics. Let’s take a look….
  3. With Splunk, you can pretty much graph or chart anything. Splunk Enterprise 7.0 takes this further. Event Annotation unifies and correlates log events, annotations, and metrics—often from disparate sources—into a single view so you can understand these events with more clarity (e.g., what might have resulted in this particular event - e.g. spike or drop in data. And what additional events might have driven this change) One example of the ever improving ways to help you visualize your data… and help you get to the answers faster. Feature details: Event annotations can only be applied to time-series charts (line, column, area). Driven by a secondary search, event annotations expect the following fields as part of the search result: _time [required] - time is a required field in order to render events on the chart. annotation_label - this field is optional, but recommended, in order to provide a description of the specific event. annotation_category - this field is optional and only useful if you want to include multiple event types, such as service starts versus stops. Custom visualizations must be updated to explicitly support this new behavior. In this release, event annotations can only be configured using SimpleXML. in this release, PDFs are not supported for event annotations.
  4. With Splunk, you can pretty much graph or chart anything. Splunk Enterprise 7.0 takes this further. Event Annotation unifies and correlates log events, annotations, and metrics—often from disparate sources—into a single view so you can understand these events with more clarity (e.g., what might have resulted in this particular event - e.g. spike or drop in data. And what additional events might have driven this change) One example of the ever improving ways to help you visualize your data… and help you get to the answers faster. Feature details: Event annotations can only be applied to time-series charts (line, column, area). Driven by a secondary search, event annotations expect the following fields as part of the search result: _time [required] - time is a required field in order to render events on the chart. annotation_label - this field is optional, but recommended, in order to provide a description of the specific event. annotation_category - this field is optional and only useful if you want to include multiple event types, such as service starts versus stops. Custom visualizations must be updated to explicitly support this new behavior. In this release, event annotations can only be configured using SimpleXML. in this release, PDFs are not supported for event annotations.
  5. With Splunk, you can pretty much graph or chart anything. Splunk Enterprise 7.0 takes this further. Event Annotation unifies and correlates log events, annotations, and metrics—often from disparate sources—into a single view so you can understand these events with more clarity (e.g., what might have resulted in this particular event - e.g. spike or drop in data. And what additional events might have driven this change) One example of the ever improving ways to help you visualize your data… and help you get to the answers faster. Feature details: Event annotations can only be applied to time-series charts (line, column, area). Driven by a secondary search, event annotations expect the following fields as part of the search result: _time [required] - time is a required field in order to render events on the chart. annotation_label - this field is optional, but recommended, in order to provide a description of the specific event. annotation_category - this field is optional and only useful if you want to include multiple event types, such as service starts versus stops. Custom visualizations must be updated to explicitly support this new behavior. In this release, event annotations can only be configured using SimpleXML. in this release, PDFs are not supported for event annotations.
  6. http://splunk-usergroups.signup.team/