Back to the Blog

Reading Trace Logs with Splunk Add-on for SQL Server

Posted by Somen De on Tuesday, March 13, 2018 - 10:36 Best Practices, Cool Tools, Operational Intelligence Splunk, sql server, Microsoft

Hello fellow Splunkers! In this blog post, we will outline how to utilize the Splunk Add-on for Microsoft SQL Server to ingest the binary trace log data that is generated by SQL Server. 

In order to accomplish this objective, we must first establish a connection to the SQL Server instance using DB Connect. This of course involves creating an "Identity" that can authenticate to the database instance, and then creating a "Connection" via that Identity. This connection needs to be facilitated by a database driver, and one pitfall to watch out for here is to make sure to choose the...

read more

Splunking Microsoft Windows Firewalls

Posted by Naveed Krabbe on Tuesday, April 14, 2015 - 11:38 Operational Intelligence Splunk, Security, Microsoft, windows, Firewall, Enterprise Security

Intro

Without exception, if you are an experienced security analyst, then you know the importance of firewall logs and the invaluable network traffic related data that they provide. Many of the key strategies of information security revolve around the network traffic of an organization and the rules that govern it. No matter the type of firewall, whether it is a hardware appliance or a software/OS level...

read more
Stay In Touch