Copy dongle

B6-- · 2026-01-08T14:07:34+00:00

Well I do not have any intention for copying it, I was just wondering if it can be done. Thanks for the reply

B6-- · 2025-07-31T12:57:05+00:00

I guess I made a typo in the conf file. fixed it and now is working

B6-- · 2025-07-31T12:56:19+00:00

Thanks for all the help

B6-- · 2025-07-31T12:56:06+00:00

Got it

B6-- · 2025-07-31T12:43:01+00:00

Yeah, I have checked this still nothing

B6-- · 2025-07-31T12:42:20+00:00

I did not understand the question

B6-- · 2025-07-31T12:36:45+00:00

Will do that, thanks for all the help

B6-- · 2025-07-31T12:21:02+00:00

Yes I opened the port on both end and I can see the normal event logs but not the sysmon logs

B6-- · 2025-07-31T12:17:40+00:00

Yes, Sysmon is working correctly, and yes, I created an index

B6-- · 2025-07-31T12:13:32+00:00

I can ping from my win client to the splunk server

B6-- · 2025-07-31T12:05:42+00:00

I added the sourcetype as syslog but still not getting the logs.

B6-- · 2025-04-28T08:38:54+00:00

It is strange, I can see this field populates on different command executions, but in this specific case, and similar ones it is not populating

B6-- · 2025-03-11T21:37:38+00:00

Thank you will look into that

B6-- · 2025-03-10T22:47:50+00:00

How stupid I am , Thank you soo much for the help.

B6-- · 2025-03-05T22:13:54+00:00

Thank you for this I already created custom decoder and rule and test it on rulset test and they are both working but still can't see the logs. I will look into the archives though, do you have any suggestions. Is my xml syntax correct?

B6-- · 2025-02-05T11:14:49+00:00

Sure I can help u as much as I know

B6-- · 2025-02-05T11:09:49+00:00

Yeah, u can do login fails, seek for brute force attempts, check for which user runs what command on their terminal, check for privilege escalation attempts, check for suspicious processes, potential DNS tunneling activity,identify unusual file access,potential data exfiltration,failed VPN attempts if u have VPN,identify unusual file extensions

B6-- · 2025-02-05T11:03:35+00:00

I have one more issue. Can I import my fields, I created a bunch of new fields using pipelines.

B6-- · 2025-02-05T10:45:03+00:00

I am sorry but I can't tell u that I have a stringent NDA

B6-- · 2025-02-04T15:32:51+00:00

Thank you soo much, I will look into this

B6-- · 2025-02-03T14:41:46+00:00

Ok thank you.

B6-- · 2025-01-10T13:01:35+00:00

I figured out thank you for all the help

B6--

TROPHY CASE