We use cookies to ensure that we give you the best experience on our website. By continuing your visit on the website, you consent to the use of the cookies. If you want to find out more about the cookies we use, you can access our Privacy Policy.
OK

Jordan Splunk User Group

Ziad Zubidah
1 month, 4 weeks ago
Splunk File Integrity Monitoring (FIM) Implementation Guide

Overview

File Integrity Monitoring (FIM) detects unauthorized or unexpected changes to files on critical systems.
This article explains how to configure Windows Security Auditing and the Splunk Universal Forwarder (UF) to collect and analyze file activity events—Create, Modify, and Delete—in Splunk Enterprise or Splunk Enterprise Security (ES).

Prerequisites

- Windows Server 2019/2022 or Windows 10/1…

see more
View thread 0 comments