6.2 Final Review
Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Already have an account? Sign In »
Video Transcription
00:01
>> Hello and welcome to
00:01
an introduction to Splunk's final video.
00:01
I hope you've enjoyed this course.
00:01
At this point, I need to introduce
00:01
the assistant for this course, Page.
00:01
She has helped to make
00:01
most of the supplemental materials.
00:01
You probably want to keep an eye
00:01
out for courses coming out by her.
00:01
In Module 1, we learned about what
00:01
Splunk is and how learning it can help your career.
00:01
We talked about how Splunk is
00:01
a high paying prominent company and how
00:01
it's software and services
00:01
turn machine data into answers.
00:01
We found average salaries
00:01
for Splunk administrators are very
00:01
high and that many companies
00:01
wants Splunk knowledge for a variety of positions,
00:01
including that of IT leadership,
00:01
business analysts, security professionals,
00:01
web developers, etc.
00:01
In Module 2, we talked about
00:01
the many resources Splunk has available for learning,
00:01
collaborating, referencing,
00:01
and participating in the community.
00:01
We explored some important features
00:01
on the Splunk website,
00:01
like their training and documentation centers.
00:01
We discussed certification paths and went
00:01
over Splunk products besides Splunk core.
00:01
Here's a quick overview of some popular Splunk products.
00:01
We install a trial version of
00:01
the Splunk Enterprise in this video series.
00:01
Splunk Enterprise is considered an
00:01
option for core Splunk platform.
00:01
Alternatives include Splunk Light,
00:01
Splunk Free, and Splunk Cloud.
00:01
Splunk Enterprise Security is an app placed on top of
00:01
a Splunk platform that helps Splunk work more like a Sim.
00:01
It offers help correlating, organizing,
00:01
and prioritizing events with the security focus.
00:01
Splunk User Behavior Analytics helps detect
00:01
anomalies in your events that can
00:01
help identify risky user behavior,
00:01
find compromises, and perform other activities.
00:01
Phantom is an orchestration and
00:01
automation tool that can take in events from
00:01
many different sources and run playbooks to enact
00:01
automated actions in response to different conditions.
00:01
VictorOps helps with alerting by sending
00:01
notifications and tracking response times.
00:01
Of course, Splunk has other products as well
00:01
like Splunk for Industrial IoT,
00:01
Insights for Infrastructure and others.
00:01
In Module 3, we talked about the data pipeline,
00:01
the different parts of the Splunk
00:01
and how to install Splunk,
00:01
including Universal Florida installations
00:01
on Windows and Linux.
00:01
The parts of Splunk we focused on were forwarders,
00:01
indexers, and search heads.
00:01
There are other roles such as
00:01
deployment servers and licensed masters.
00:01
Forwarders, indexers,
00:01
and search heads correspond
00:01
to parts of the data pipeline.
00:01
Universal Florida generally just
00:01
handles taking the input and passing it
00:01
along to an indexer to parse index and
00:01
supply when a search header runs a search.
00:01
Module 4 covered how using the Splunk web interface,
00:01
different ways to get data into
00:01
Splunk and how to monitor our file
00:01
location by modifying
00:01
the inputs Splunk configuration file.
00:01
We talked about how you can set Splunk to
00:01
listen on different ports to receive data,
00:01
including dataset from forwarders and syslog events.
00:01
You can also directly upload data,
00:01
monitor files, and directories,
00:01
perform API calls and more.
00:01
Module 5 was about working with data.
00:01
We learned how to do simple searches, create alerts,
00:01
reports and dashboards, and how to install an app.
00:01
We learned some good tips such as how to make
00:01
more specific events to
00:01
improve Splunk performance as well as
00:01
setting alerts and reports to run at different times.
00:01
We also ran some
00:01
examples searches and talked about how you can
00:01
check supplemental materials for more examples.
00:01
Module 6, our last module helps you
00:01
prepare for the final test and future study.
00:01
I really hope you've enjoyed
00:01
this class and I wish you the
00:01
best of luck in your careers. Thank you.
Similar Content
