Your Splunk Guide for Smooth Sailing with CEF Field Extractions
One of the more common log formats you’ll run into when importing data into Splunk is the ArcSight Common Event Format (CEF). A unique feature of CEF is its ability to support custom extensions, which allows for vendor flexibility when looking to log data that is otherwise not handled by ... Read More
Your In-Depth Guide to Collecting Google Drive Activity Logs in Splunk
One of great things about Splunk is that if there’s a data source you want to capture, there’s probably a way to do it. I recently needed to configure Google Drive audit logging to track student activity in an international security competition. For many log sources, I don’t always have ... Read More
