Splunk Training - Operation Data Analytics with Splunk

Course Details

• Splunk Introduction
• Splunk Defined, Splunk Products
• The Magic Quadrant for Security Information and Event Management (SIEM)
• Splunk Editions
• Deployment Options
• Common Components
• Splunk Admin Dashboard (Web UI)
• Events
• Data Indexing
• Distributed Splunk Indexing and Searching
• Architecture for a Multi-Tier Splunk Enterprise Deployment
• Splunk Data Sources
• Data Source Types
• The Source Types Automatically Recognized by Splunk
• The “Pre-trained” Source Types
• Windows ® Data Sources
• Data Indexing
• Web UI for Adding Data to Indexer
• Web UI: Adding Data Flow for Local File Upload
• Web UI: Add Data for Monitoring
• Automatic Recognition of Data Source
• Where is My Uploaded File?
• Custom Event Format
• Searching and Reporting with Splunk
• Data Searching, The Search Processing Language (SPL)
• Searching and Reporting Activities, The Search Page
• Core Search Concepts, Search Command Auto-Completion
• The Search Basics, Search Command Categories
• Command Examples, More Examples of Search Commands
• Statistical Commands, Statistical and Time Functions
• From SQL to SPL – the Translation Table
• Visual Aids for Building Search Queries
• Visualizations, Save Your Searches as Dashboards
• The Delete Operation
• How Do I Delete My Data?
• Splunk Forwarders
• Flavors of Splunk Forwarders
• Forwarder Comparison Table (Abridged)
• The Splunk Forwarder Diagram
• Splunk Universal Forwarder (UF) Supported OSes
• UF Functions
• What UF Cannot Do
• Lab Exercises
• Learning the Lab Environment
• Local File Upload
• Local File Upload Project
• TCP Port Real-time Monitoring
• Using Search and Reporting App
• Querying for Insights
• Understanding Universal Forwarders (For Review Only)
• Using Universal Forwarders Project (For Review Only)
• Data Visualization
• Dealing with Missing Timestamps
• The Delete Operation
• i Bare Essentials (Optional)