uberAgent ESA - Sysmon alternative and application performance monitoring in a single lightweight agent

Name: uberAgent ESA - Sysmon alternative and application performance monitoring in a single lightweight agent
Start: 2022-04-05T11:00:00+02:00
End: 2022-04-05T13:00:00+02:00

Cairo Splunk User Group

Tuesday, April 5, 2022, 9:00 – 11:00 AM UTC

23

RSVPs

About this event

After some feedback I moved the session from Monday evening to Tuesday morning. Hope that fits everyone. Spread the word :)

Hello Chapter,
finally we gonna have another session of the Splunk Usergroup Cairo.
I am honoured that we have Helge Klein from vast limits GmbH who is the creator of uberagent talking about their new Product. Additionally we will have Noura Ali, Data Engineer at _Vois to talk about timechart vs bin.
Afterwards we can have an open table.
Looking forward to our meeting.
Thanks to the Global User Group week we will raffle 2 x 100$ vouchers for the Splunk swag store. https://www.mypromomall.com/splunk

When

Tuesday, April 5, 2022
9:00 AM – 11:00 AM UTC

Agenda

9:00 AM	Welcome & Introduction
9:15 AM	uberAgent ESA - Sysmon alternative and application performance monitoring in a single lightweight agent	Did you know that there's an alternative to Sysmon? A product that comes with Sysmon and Sigma rule converters, that excels with a graphical rule editor, and uses a simple yet powerful query language instead of XML. Oh, and it offers sophisticated application monitoring for all Windows and macOS endpoints including Citrix, too. This product is uberAgent ESA. It's developed in Germany by vast limits, whose founder, Helge Klein, presents its capabilities in this session.
10:00 AM	Splunk timechart vs bin	Noura Ali will give us an Explanation and some examples when to use timechart or bin
10:30 AM	Open table and Closing