If you are a beginner with Splunk or you are a novice, this course will go in-depth on the basic concepts for Splunk, how to configure it and configure multiple pieces to get it working.

Splunk is one of the industry standards for SIEM tools, centralized logging mechanisms, etc. Splunk is a very easy and verse tool. You can configure simple or complex searches/dashboards. I wanted to create this course because there is A LOT of information out there. However, it’s either all scattered or there are no detailed explanations on how to configure Splunk. I want to equip you the key components of Splunk, how to configure searches and centrally manage forwarders to pull data into Splunk.

We will cover how to setup and configure an AWS environment. Everything is moving into the cloud and it's important to get familiar with a cloud environment that's used heavily within the cooperate world and government sectors

I've left a resources section what contains all of the searches that I've made within a production environment. No one else is doing this! I wanted to share this with you so that you can understand what searches to make and, more importantly, make you look like a ROCKSTAR