Cyber Incident Investigation with Splunk | TryHackMe Investigating with Splunk

Thanks a lot! The part of cyberchef was simply insane!

in every person have easily understand your splunk videos. thank you for your video.

Well done mate, keep the videos up !

Good demo. Tip... You forgot to quote the net user search. It should have been "net user" because it's a phrase with a space between.

Thanks for this amazing learning exerience.Can you guide me from where you have taken list of various Event id's?

Hello. Can you share the link for the list of Event IDs,thanks

Thanks a million Its extremely helpful for newbie like me (i start feeling more confident with your help)

Thank you very much...this was very insightful!! Just have a doubt though..In this case we have the questions which makes it easier to input the commands in the Search Header.. But in a real time scenario how do we start the search? I am preparing for interviews for SOC Analyst position and come from a non-it background.. Thank you

Where can one find a copy of the cybersecurity/Blue Team manual you used?

Thanks for wonderful Explanation.

Very helpful!

What do you use to find event ids, the page your refer to?

Great video, could you recommend a comprehensive list of Win Event IDs?

Do you have your notes shared somewhere that we can take a look at?

can you please give me the "investigating logs" notes for free? this one only

Hi , it was good explaining splunk video 👌.
I want help in finding the good understanding cyber security,
How I can understand events in good way ?
I certainly that u find that url and encoded and all that work , how i can be like u ,is there any map or fundamentals that I should follow?
And again thank u 🙏🏻

how can we find that particular eventid is new user creation?

Thank you!

thank you!!

can you help me

ADAMSIN