Splunk

Log Analytics.

Splunk is a log analytics tool used to gather, analyze and visualize data. Though not originally intended to be a SIEM tool, Splunk is often used for security monitoring and business analytics. The Splunk Enterprise trial converts to a free version after 60 days, which doesn’t require authentication.

Attacks

reverse_shell_splunk	Update file in bin tar -cvzf <MYNAME>.tgz reverse_shell_splunk Set nc listener Apps -> Manage Apps -> Install app from file and Upload file (As soon as we upload the application, a reverse shell is received as the status of the application will automatically be switched to Enabled)