Splunk Basics Tutorial for Beginners | Cyber Security
Vložit
- čas přidán 28. 10. 2023
- Hey All! In this video, we'll be going through the basic tutorial for Splunk beginners. Key topics are Indexes, Logs, Data ingestions, Search Queries, Macros, Alerts, and Dashboard. These are important knowledge to have when pursuing a career in Cyber Security.
Hope you guys enjoy this video! - Jak na to + styl
Cybersecurity recruiters and managers love when their engineers Splunk all over the place
Agreed!
Haha...good one!
Now that's what you call data exfiltration!
Very nice.
I've been learning splunks and watching videos, this one makes the most sense.
Pls do more of these tutorials. Thank you
very crisp and so much put in such short video , great capsule .
Great content, keep up!
Good work brother!
Thanks for this!
Great Video, could you make more video's about.
Hey, im so sophomore and I'm interested in become a SOC analyst, pls have more vid, love ya
great videos brother, thank you for being so helpful in your videos.
Thanks for the feedback!
yes! this video is awesome would love more in-depth splunk guides as well! or just make a series from beginner to pro
Thanks for the feedback!
jono, excellent video.
It took me a long time to understand splunk, I had not been working in this world, it is an excellent tool and thank you for sharing your knowledge and your vision of how you work.
It helps me a lot to see another colleague's vision.
greetings from Argentina.
Appreciate the feedback!
@@TechwithJono I hope to see more of your videos and learn.
Although I have been in cybersecurity for a long time, as far as I am concerned, I am new and the truth is that I see a mature process like the one you use due to your current position in the market, your work, your studies.
They help me better focus my professional path as a soc manager.
I know the effort that goes into making the videos, so I value it a lot.
Is it possible to delete uploaded data? If yes please could you do a tutorial on that.
would you say software engineer is harder than cyber security ? as a whole field of its own?
218th...Thanks. Im interested to know the keyword when the connection pool (we are allowing 500 connections to the DB) is either nearly exhausted. Something like that. Any recommendations.
I'm a cyber security analyst and I learned some new splunk tips from you. Thanks
OK, OK... So you got a cybersecurity job and you didn't know what Spunk was? If you don't mind me asking, what was your educational background that got you hired? What industry certifications do you have?
@@deebee201 the key words there were "some NEW tips", but that's ok, you can't think rationally so I don't expect you to be able to read either
@@BaroWolf Now that wasn't really an answer to my question, now was it. So who can't read? And if you are so knowledgeable, then pray tell, what certifications do you have?
@@deebee201 if you were looking for career advice perhaps you shouldn't be so condescending in your responses. I'm only 2 years into the industry, but I have about 23 certifications from TAFE and specific vendors, but also a lot of experience through online CTF. Best of luck in your journey
@@deebee201 bro said Spunk.
Bro, what are you doing at 5AM? :D BTW, good job on this, super helpful!
Hello Jono, i learned a lot with your videos. Also, are you a Soc analyst tier 1, 2 or 3?
Hey there, not sure what tier system you are referring to but I'm a standard SOC analyst if that helps!
Tier 1: Triage Specialist; Tier 2: Incident Responder; Tier 3: Threat Hunter; Tier 4: SOC Manager
bro make video on investigation technique
I am working as Service desk analyst. I want to transit my career to Cybersecurity. Is this a good idea? If yes, what certificate should I grab?
Hey there, transitioning to Cyber security from Service desk is usually a good way to go! Check out my video "top 5 trending Cybersecurity Jobs in 2023".
OK bro, I can give you a better answer than that, first get your Comp TIA A+ certification, this will give you a basic understanding of computer use, hardware, and basic concepts. Follow that by either your Network+, or CCNA cert to get your core networking skills. These are the fundamentals that all the other knowledge that you will learn, and/or want to learn will be predicated on. It is mandatory that you understand networking if you want to work in a decent IT job period, no matter what the field. It is like the fact that you can not learn a language until you have learned its alphabet. It is that fundamental. Then get your Comp TIA Security+ cert. I got my Google cybersecurity cert before I endeavored to get my Security+. Probably not a bad idea for anyone starting out, as this program is very comprehensive and involved, and taught me a great deal. Good luck compadre
Do you need to import a database prior to submitting queries? Your data is already visible. Where did it come from?
Hey there, check out this video for how to get practice data in! czcams.com/video/_2O-qxS8nqI/video.htmlsi=1RU_ekasYygur9J-
Splunk is sooo complicated. It's just a log aggregator, but where are the apps built on top of this to visualize the info?
Right?! Splunk is not fun to learn. Not impressed. I'm still gonna learn it, but I don't got to like it
Hey so there are 3 main components to splunk in this respect.
The search head, indexer and forwarder.
So we looked at the GUI here but actually the applications (whose logs you’d like to centralise in splunk) would have an agent installed on there. And as such they would forward the logs to the indexer and allow you to process/ query via the search head.
But it’s relative to your environment and can vary, but effectively the universal forwarder (agent) would just forward the logs.
If you have the logs installed locally you could also just ingest your payload and the indexer would parse it such that you could again process it using the SPL (splunk processing language)
Hope this answers your question.
I’ve got a video coming out on Splunk, I’ll be uploading tomorrow.
Bro taught me more in 13 mins for the stuff my senior took 12 months
Glad to hear that!
Great video Jono - Please feel free to let me know if you would like to collaborate.
Hey how can i learn splunk for free?
Hey there, check out this video - How To Install Splunk in 5 Minutes PLUS Practice Data | Cyber Security
czcams.com/video/_2O-qxS8nqI/video.html
There are tutorials, but if you want industry recognized credit for your effort, it's not free but for $50 a month Coursera has a great class that will look great on your resume, and it is also taught by some of the creators of Splunk. I'm taking it now.