Security Analytics: having fun with Splunk and a packet capture file (pcap)
Machine data is one of the most important artifacts when it comes to monitoring and detecting computer security threats. However, while having more data increases chances to spot suspicious patterns, handling and processing it without making use of specialized tools is quite difficult. Network...