Splunk

Log Analytics.

Splunk is a log analytics tool used to gather, analyze and visualize data. Though not originally intended to be a SIEM tool, Splunk is often used for security monitoring and business analytics. The Splunk Enterprise trial converts to a free version after 60 days, which doesn’t require authentication.

Attacks

Update file in bin
tar -cvzf <MYNAME>.tgz reverse_shell_splunk
Set nc listener
Apps -> Manage Apps -> Install app from file and Upload file (As soon as we upload the application, a reverse shell is received as the status of the application will automatically be switched to Enabled)

Last updated 15 days ago

Was this helpful?