1. Threathunting Spl
Splunk code (SPL) useful for serious threat hunters.
2. spl-to-kql
The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects requiring both technologies (Splunk and Azure/Sentinel) or any other hybrid environments. Feel free to add/suggest entries.
✭ 16
1-2 of 2 user projects