Use Case Videos

Splunk use case videos give users a practical approach to investigating and solving specific problems within their networks. These videos are particularly helpful to beginner and intermediate users, giving them actionable examples that they can start using today.

Use Case - Checking for Windows Audit Log Tampering

Use case video giving an example of how to use Splunk to check for any tampering done to Windows audit logs.

Read More

Use Case - Finding Large Web Uploads

How to use Splunk with proxy data to find large file uploads that could point to data exfiltration in your network.

Read More

Use Case - Detecting Recurring Malware on Host

Using anti-virus logs to detect if malware is recurring on a host after being removed.

Read More

Use Case - Detecting Brute Force Attacks

This use case video shows how to use Windows security logs to find possible brute force attacks on your network.

Read More

Use Case - Detecting Network and Port Scanning

How to use Splunk with firewall logs to detect hosts that are running network and port scans.

Read More

Use Case - Detecting Unencrypted Web Communications

Using Splunk to find unencrypted web communications that could lead to a data breach.

Read More

Use Case - Identifying Web Users by Country

In this video, we will show you how to use IPs in your data to report and visualize user locations.

Read More

Use Case - Identifying Slow Web Content

A slow loading web site can not only frustrate users, but can also hurt search rankings. In this video we will show you how to use Splunk Enterprise to find slow content using web server logs.

Read More

Use Case - Finding New Local Admin Accounts

Often an attack will include the creation of a new user, followed by permissions being elevated to an admin level. In this video we show you how to use Splunk to find these accounts so that you can take action if needed.

Read More

Use Case - Find Interactive Logins from Service Accounts

Most service accounts should never interactively log into servers. This video will show you how to actively monitor your servers so you can quickly investigate if this happens.

Read More