Badges
40 Points
6 Years
User Activity
About 6 years ago
Answered a question: Which would you recommend to your boss, IBM QRadar or Splunk?
The answer of course is, it depends. They are both great tools. In my experience, Splunk would be viewed favorably by teams that prefer scripting and building their own capabilities. Splunk does also has an add-on ES module that is pre-configured to address many common…
Projects
About 6 years ago
Built a SIEM from event logs forwarded toBuilt a SIEM from event logs forwarded to Azure OMS for alerting and PowerBI for visualization and analysis
Answers
Interesting Projects and Accomplishments
About 6 years ago