top of page
Geeking out on Splunk and IT Security
Search
Use Ingest Actions to shrink your ingest and make the most of your license!
On the 18th of September 2024 I gave a talk on this topic at the London Splunk User Group meetup. Ingest Actions are a simple feature of...
Gabriel Vasseur
Sep 20, 20241 min read
76 views
0 comments
Maintaining your correlation searches with ES Choreographer
I did a talk at Splunk .conf21 about how to maintain correlation searches: pdf / mp4 . If you’re looking for the source code for the...
Gabriel Vasseur
Oct 19, 20211 min read
11 views
0 comments
Change Tracking in Splunk
Are you tracking changes in your Splunk deployment? Most people don't, unless they can justify having a custom (heavy!) process using...
Gabriel Vasseur
Oct 31, 20181 min read
31 views
0 comments
Running Splunk Enterprise Security at Capacity with Data Model Acceleration
Data models and especially their acceleration are often misunderstood by Splunk users. Yet they are absolutely critical, especially for...
Gabriel Vasseur
Oct 31, 20171 min read
28 views
0 comments
Regular Expressions
Regular expressions are extremely useful. They are everywhere, including in Splunk. And they are useful to everyone, not just data...
Gabriel Vasseur
Oct 31, 20161 min read
8 views
0 comments
bottom of page