Automated Log Management and Analysis using Splunk for Computer Incident Investigations
Splunk – I define “Log Analysis” as a process of collecting system logs (syslog) and event data from computer systems, network devices and applications to look for anomalous events that are malicious or are in violation of organizational policies.