Threat hunting is equal parts science and art. There are countless ways to eliminate a threat, yet the challenge is in developing the awareness and expertise to choose the best approach at the right time.
The good news? This cookbook is designed to help you do just that. We’ve crafted this to expand on your Search Processing Language (SPL) know-how by bridging the gaps between the theory of The PEAK Threat Hunting Framework and the expansive functionality of Splunk.
- Dozens of prescriptive threat hunting queries you can use as-is or customize to address specific threat hunting scenarios.
- Fundamental threat hunting methods and strategies to help you select the best method for your use case.
- Recommended resources, apps, and more to help you sharpen your SecOps knowledge and practices.
