You're sitting on DNS logs and not getting enough out of them. Use @AlphaSOC_ to quickly gain meaningful insights: http://alphasoc.com
-
-
Replying to @dguido @alphasoc_
if only that were true and not a total fantasy
1 reply 0 retweets 0 likes -
Replying to @bill_e_ghote @alphasoc_
Try it! It's a self-service Splunk app => easy to install and evaluate for yourself.
1 reply 0 retweets 1 like -
Replying to @dguido @alphasoc_
not the analysis part, the "you have logs" bit... organizational failure when it comes to logs in general esp. DNS...
1 reply 0 retweets 1 like -
Quixotic windmill battles for years on end over it, too
1 reply 0 retweets 1 like -
Replying to @bill_e_ghote @alphasoc_
I think orgs also avoid turning on DNS logging b/c they don't know what they'd do with them. This makes it easy.
1 reply 0 retweets 0 likes -
Replying to @dguido @alphasoc_
Maybe so, but I would also say "nothing Splunk" is free. My saying put logs there is formula to be ignored. Sad, but true
2 replies 0 retweets 0 likes -
Maybe another jousting session is overdue. I don't mean to come across negatively, but would consider other solutions.
1 reply 0 retweets 1 like
That's honest. There are people this helps, and people it won't. I think future versions may drop Splunk as a req.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.