Splunk Deployment and Use by Mike Villeneuv hosted at ECPI
During this class covered installing Splunk, getting data into Splunk, and finally searching and reporting across the indexed data. In order to get the most out of this course, please come prepared with the following items;
- Virtual Machine Player:
- Ubuntu Desktop 18.04.1 LTS
- Splunk Base Account
- You will need a Splunk Base account to download Splunk, it will also be needed for downloading additional Splunk add-ons.
- Splunk Enterprise 7.2.0
Mike Villeneuve has worked as an Information Security Engineer at Cisco for the past 5 years. His current role is in the Foundational Architecture and Security Tech group, whose focus is securing Cisco DevOp environments. His previous role was in the Government Trust and Tech group. One of his duties on that team was deploying and managing a Splunk environment; he will be sharing some of that experience with you in this course.
Pictures from the course
Raleigh ISSA Chapter Update Slides – November 2018Previous
Raleigh ISSA November 1, 2018, Meeting Pictures – RTP HeadquartersNext