Register Now

All Fields are required *


Building Correlation Searches with Splunk, hands on workshop
Registration is now closed for this session.

9th September, 2020.

This is a modular, hands-on workshop designed to show participants how to leverage Splunk to develop their own correlation searches. This workshop provides users a way to gain familiarity with building correlation searches in Splunk, as well as introducing data models and the tstats command that can provide a user a method to further optimise their correlation searches. The workshop leverages the popular Boss of the SOC (BOTS) dataset with hands-on exercises that build on one another. Users will come away with a better understanding of how to build their own correlation searches in Splunk as well as how to customise their associated notable events to provide more immediate insights to their analysts.

Prerequisites: Splunk Fundamentals 1 (highly recommended), Enterprise Security hands on workshop or some ES experience is also be recommended.
Advanced Persistent Threat Hunting with Splunk, hands on workshop
Registration is now closed for this session.
23rd September, 2020.

APT hunting with Splunk is a modular, hands-on workshop designed provide a deeper dive into an Advanced Persistent Threat while providing an opportunity for participants to develop hypotheses and hunt. This workshop leverages Splunk and Enterprise Security and introduces how models like the Lockheed Martin Kill Chain, MITRE ATT&CK and Diamond Model can be used to contextualise their hunts. The workshop leverages the popular Boss of the SOC (BOTS) dataset in a multi-hunt format. Users will leave with a better understanding of how Splunk can be used to hunt for threats within their enterprise.

Prerequisites: None
Phantom, hands-on workshop
7th October, 2020

The Phantom hands-on workshop is designed to familiarise participants with how to respond to incidents, manage cases and artefacts, as well as automate your incident response and standard operating procedures. This workshop provides users an opportunity to walk through a real-world scenario and see first-hand how Phantom can be used from the creation of a notable event, to enriching alerts by automatically gathering data, all the way to managing and resolving the incident.

Prerequisites: None

Splunk4Ninjas: Data Onboarding, hands-on workshop
Registration is now closed for this session.
16th September, 2020

A hands-on workshop that focuses on Splunk as a platform and the ability to onboard data into Splunk. This workshop explores the various ways to gather inputs, best practices and the various methods to bring data into Splunk.
  • Collecting Data
  • Indexing Best Practices
  • Field extraction and CIM compliance
Who should attend?
Splunk administrators responsible for onboarding data, creating knowledge objects and eventually building TA. Ideally, you should be familiar with Splunk and its main principles. we will not explain Splunk basics during this workshop - we jump directly on how to do things and applying best practices.

Prerequisites: None

Splunk4Rookies on AWS, hands-on workshop
Registration is now closed for this session.
30th September, 2020

Go from Splunk & AWS Zero to Hero in under 3 hours! A great opportunity for you to discover the value of Splunk & AWS hands-on in a matter of hours.

What's Involved:
  • Collect & index data (including AWS logs)
  • Search data from AWS (Cloud Trail & Cloud Watch)
  • Creation of interactive dashboards
  • Explore the Splunk AWS Application
Who should attend?
Sessions are designed for Splunk beginners, whether your organisation is just starting to consider using Splunk on or with AWS, or you have just joined a team of Splunk & AWS Ninjas and need to understand the basics, SPLUNK4ROOKIES ON AWS is for you!

Prerequisites: None

Splunk4Ninjas : Machine Learning hands-on workshop
14thOctober, 2020

A 3 hour session where attendees get an introduction to Splunk's Machine Learning Toolkit (MLTK) along with hands-on experience where they are given Machine Learning Challenges to be solved and results being collected on dashboards in their own AWS hosted Splunk instance.

What's Involved:
  • Hands-on Content that will be covered during the workshop
  • Exploratory Data Analysis
  • Detect Outliers
  • Supervised & Unsupervised Learning
Who should attend?
  • Existing Splunk users who want an intro and a first hands-on experience with MLTK
  • Analytics / BA/BI / Data Science teams who want to learn more about Splunk and MLTK
  • IT Ops / Security / IoT Splunk users who want to learn more about Splunk and MLTK

Prerequisites: Splunk Power User certification as a minimum (more is always better)