Mastodawn

🚨 CRITICAL: Splunk Enterprise vulnerability lets low-privileged users upload files that may allow remote code execution. No CVE yet. No active exploits reported. Restrict file uploads & monitor temp dirs. Details: https://radar.offseq.com/threat/splunk-enterprise-update-patches-code-execution-vu-33e172b1 #OffSeq #Splunk #Vuln #BlueTeam

Analyse Podcast 21h ago

New episode: we sat down with John Morgan of Splunk Security at Cisco to unpack the agentic SOC, AI-powered attackers, shadow AI, and why observability now underpins security. A thoughtful conversation on how CISOs are becoming business enablers in the AI era.

Watch on YouTube: https://youtu.be/2C3P8EtuI4g

#AnalysePodcast #CyberSecurity #AI #Splunk

The Agentic SOC: How Splunk Security Transforms Enterprises in the Age of AI with John Morgan

YouTube

RedPacket Security 1d ago

CVE Alert: CVE-2026-20205 - Splunk - Splunk MCP Server - https://www.redpacketsecurity.com/cve-alert-cve-2026-20205-splunk-splunk-mcp-server/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-20205 #splunk #splunk-mcp-server

RedPacket Security 1d ago

CVE Alert: CVE-2026-20204 - Splunk - Splunk Enterprise - https://www.redpacketsecurity.com/cve-alert-cve-2026-20204-splunk-splunk-enterprise/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-20204 #splunk #splunk-enterprise

bbbourq 2d ago

I'm looking for work in #Barcelona, Spain. I'm a #Linux admin with #RedHat experience and hold #RHCSA & #RHCE certifications. I also have experience with #Splunk, #Tenable, and #VMware sprinkled with some networking knowledge. I also have CompTIA Security+. I won't need sponsorship since my spouse is an EU member. I do not know Spanish well, but learning.

#FediHire #GetFediHired #openforwork

Advanced Persistent Teapot 3d ago

#Splunk multisearch is fucking magic, I am going to be taking advantage of this so much

bbbourq 3d ago

I'm looking for work in #Barcelona, Spain. I'm a #Linux admin with #RedHat experience and hold #RHCSA & #RHCE certifications. I also have experience with #Splunk, #Tenable, and #VMware sprinkled with some networking knowledge. I also have CompTIA Security+. I won't need sponsorship since my spouse is an EU member. I am learning Catalan in the process.

Beth Pariseau 4d ago

#Cisco ’s #Splunk will fold #Galileo in with its #ITops products, but #AI apps and #observability introduce a new layer of management that's up for grabs in enterprises.

See what industry experts and practitioners have to say about this organizational conundrum here --> https://www.techtarget.com/searchitoperations/news/366641600/Cisco-Galileo-buy-reflects-blurring-lines-in-AI-observability

Cisco Galileo buy reflects blurring lines in AI observability

Cisco’s Splunk folds Galileo in with its IT ops products, but AI apps and observability introduce a new layer of management that's up for grabs in enterprises. 

TechTarget

Greg Vedders Apr 6

Just released SignalTrace v2.1.0 — my self-hosted honeypot and link tracker for phishing simulations and recon detection.

New in this release: Docker support, a Splunk app with Dashboard Studio dashboard, dark mode and mobile layout, better bot scoring with spoofed UA detection and expanded path risk lists, and a round of security fixes.

Free, open source, MIT licensed.

https://github.com/veddegre/signaltrace

#infosec #honeypot #splunk #docker #opensource #selfhosted

Show thread

patpro Mar 31

@mensrea @elena honestly, I self-host #splunk for my own needs.
I’m using it at home (free 500MB/day license) and at work (old enterprise perpetual license) for more than 12 years now.

It’s FREAKING good. I can’t find a decent contender in the #FOSS world for the enterprise version. For the free tier (striped down version without user profile, alerting, etc.), things like #graylog or #wazuh can be great alternatives.
Still, deployment of Splunk is super easy.