Badges

40 Points
6 Years

User Activity

About 6 years ago
The answer of course is, it depends. They are both great tools. In my experience, Splunk would be viewed favorably by teams that prefer scripting and building their own capabilities. Splunk does also has an add-on ES module that is pre-configured to address many common…

Projects

About 6 years ago
Built a SIEM from event logs forwarded to
Built a SIEM from event logs forwarded to Azure OMS for alerting and PowerBI for visualization and analysis

Interesting Projects and Accomplishments