What’s happening?

You have a lot of different log files and events from hundreds of different sources. Like firewalls, webservers, switches, routers, Office 365, Exchange and whatnot.

A very nice utility for gathering these data, indexing them for searching, create reports and automations is Splunk

Splunk can run on Windows or Linux, or as a Cloud service.
There is a trial version available for all these, as well as a free version with some limitations.

You can expect a phone call from the UK after registering and downloading this software, but it’s well worth the effort.

I find the documentation very well written and explained, and there are a lot of application add-ons from the communtity.

More articles

SPF, DKIM and DMARC

A little overview of : SFP (Sender Policy Framework) DKIM (Domain Keys Identified Mail) DMARC (Domain-based Message Authentication, Reporting & Conformance)

Read More »