Splunk Application Development

Aplura knows Splunk apps and Splunk app development. We’ve developed many for clients, the community, and ourselves. We understand the complexity of Splunk apps, and their deployment in distributed deployments. We love building new integrations with new or existing technologies. Why choose us? Our Team We have an experienced team and a long relationship with Splunk.
Read More …

Introducing Aplura Security for Splunk

Aplura is proud to announce Aplura Security for Splunk. Our solution promises to provide value through: Better Security, Minimal Effort Security Content by Security Experts Accelerate Time to Value Threat Hunting, Reporting, Analytics, and more For more information, see our Aplura Security for Splunk product page.

ISC2 Exam Developer Workshop

I just participated in an invitation-only ISC2 Exam Developer Workshop. The workshop gave me an insider’s perspective on how diligent ISC2 is for providing exams that help qualified candidates within the information security field distinguish themselves amongst their peers. During this workshop, I was among a group of information security professionals that was galvanized to
Read More …

Success with rsyslog

For a while now, I’ve been hearing complaints about rsyslog’s configuration format. syslogd style configuration syntax has a reputation for being difficult to read. Understandably, this has caused a preference for syslog-ng with some going as far as ripping out rsyslogd, the default syslog implementation, and replacing it with syslog-ng. In this post, I hope to
Read More …

Easily Deploy and Configure splunkforwarders via RPM

Introduction At Aplura, we have many clients that are big Linux shops. These clients have dozens, hundreds, or even thousands of Red Hat Enterprise Linux or CentOS systems that they must manage, configure, and maintain. In our line of work, we deal with small (<50GB) Splunk environments, large (multi-TB) Splunk environments, and everything in between.
Read More …

Splunk Baltimore User Group October 2017

Splunk’s Baltimore User Group  meeting on Monday October 16th will host guest speaker Jack Coates. Jack is currently the Chief Product Officer of Scianta Analytics, a Splunk technology partner specializing on machine learning within the Splunk platform. Prior to working at Scianta, Jack spent 6 years at Splunk in product management, where he did many wonderful things to improve
Read More …

SplunkTrust Members for 2017 include four Aplura Consultants

What is the SplunkTrust The SplunkTrust is Splunk’s Community MVP program, honoring members of the community that give back, through Splunk Answers posts, sharing apps on Splunkbase, User-group participation, and helping people on on the Splunk Slack channel. SplunkTrust members may not have all of the answers, but they are always willing to help. Returning
Read More …

It’s time for Splunk #conf2017

Splunk .conf 2017 is Splunk’s 8th annual user conference and Aplura staff have been there for every one of them. We get a lot of questions from both first timers and .conf veterans about what they should see and do, so we thought we would go ahead and post some tips here. Get the conf2017
Read More …

Our Cheat Sheets have been updated, including new ones!

We’ve updated our cheat sheets page, with fresh new versions of the Data Onboarding cheat sheet, as well as some new ones on Syslog, AppDev, Securing Splunk, and Search Head Clustering. Check them out over on our cheat sheets page!

Extending Splunk Stream Vocabularies using IPFIX

Splunk Stream, NetFlow and IPFIX One of my favorite tools in my Splunk arsenal Splunk Stream.  Splunk Stream allows you to capture and analyze network traffic, and then index that data in Splunk. It works great for analyzing DNS, email, DHCP and more. But what if you have your own types of traffic that you
Read More …

Next Page »