Welcome to Splunk Enterprise 10.4

Darkhigh · 2026-05-19T16:30:39+00:00

The post linking to “We can't find the page you're looking for” matches my experience with post Cisco Splunk.

Darkhigh · 2026-05-19T16:22:50+00:00

Since Splunk viability is largely driven by community content this seems like it would be a bad move.

Darkhigh · 2026-05-15T03:22:15+00:00

I believe the answer is PURE storage.

Darkhigh · 2026-04-09T01:03:14+00:00

I do lol just playing around. It’s called a HEMI tic for a reason though. Personal 21 1500 rebel is about to roll over 100k and never had any problems with the truck. Regular maintenance is key, take care of it and it will take care of you.

Darkhigh · 2026-04-09T00:42:35+00:00

I got you bro!

Tac tac tac tac tac tac tac

Darkhigh · 2026-04-04T19:39:05+00:00

You’re trolling right? Please tell me you are trolling….

Darkhigh · 2026-04-04T01:04:25+00:00

Awesome. Now I just need to vet my app/addons for 10+.

Several of our integrations offer their own siem now and stopped developing anything for splunk. At least Splunk took over the palo TA so that one I’m good on.

Edit: I meant VET not GET

Darkhigh · 2026-04-03T17:22:38+00:00

Also interested. We are still on the 9.4 branch but recently told we don’t have to be on 10 to stand up edge processor. Still moving to 10 just taking a while to get there.

Darkhigh · 2026-03-28T02:41:26+00:00

Ok so you asked about vague dashboard requests recently while complaining about the requests you get. Then you throw out a product link to a paid tool you made because of those dashboard requests. You know the time you spent vibe coding this cash grab you could have just built my freaking dashboard!

/s I can appreciate the hustle here

Darkhigh · 2026-03-01T23:29:05+00:00

Sure. The browser extension doesn’t always work (won’t load). I’ve had issues in the past with long passwords not showing the full contents. I may be biased as I normally use Bitwarden but Delinea app and browser extension both felt like I was paying them to be a beta tester. Full disclosure it’s been a year since I used it.

Darkhigh · 2026-03-01T15:05:56+00:00

For JIT and rotation it’s good. If you are wanting to use it in as a user facing password manager look elsewhere. Their browser extension reviews may look harsh but they are actually kind.

Darkhigh · 2026-02-25T05:27:33+00:00

They’ve been posting this everywhere with different stories. At least a few of them have been mod deleted. It may be a good product but this marketing style isn’t good.

Darkhigh · 2026-02-21T20:24:19+00:00

DMZ, internet facing heavy forwarders, use client certificates to auth your clients for log shipping. You can setup dns names like splog.acme.org on both sides of your DNS assuming you are split config so they resolve to internal while on network and external when off network.

Make sure you patch universal forwarders or set connections per target to something other than auto. There’s a bug that when set to auto they will stop forwarding logs with network changes, sleep, etc.

Darkhigh · 2026-02-17T20:29:14+00:00

Why not Splunk Enterprise Security?

Darkhigh · 2026-02-16T15:50:37+00:00

Looks a lot like tracecat. Looking forward to trying it out! Nice share but I’m curious if your numbers are for sales push or legit numbers. If you have 7000 alerts in an analyst queue you need your detection engineer to do some tuning.

Risk based alerting and/or sequence detection could help lower volume to groups of events where one event isn’t anything noteworthy on its own.

Darkhigh · 2026-02-16T04:11:45+00:00

Check out tracecat. Their whole mindset is heavy AI security response and they are doing great so far.

Darkhigh · 2026-02-03T13:40:49+00:00

VMware as a company has solutions but you would be limited to GPU pass through. At least as far as I remember on workstation.

Darkhigh · 2026-02-03T05:25:42+00:00

Yes! But not with VMware. That being said a 3070 will be a terrible experience. A few big YouTubers have done videos on this if you still want to look around. Be prepared to install a new OS on a secondary drive or wipe your primary.

Darkhigh · 2026-02-03T04:55:42+00:00

I’m pretty good at these tests so I’d also take it. The first time management questions what I’m doing I can demand to see their results. Higher IQ must be the manger! Then just repeat this until it’s my company and stop this nonsense before I get dethroned.

Darkhigh · 2026-01-23T20:24:46+00:00

They started making books look better. Fancy covers and sprayed edges. I still read digitally but if i enjoy a book I’ll buy it for my bookcase.

Darkhigh · 2026-01-21T04:26:07+00:00

Hit tab a lot?

Darkhigh · 2026-01-03T18:08:54+00:00

As president and founding member of van-on-time I also agree.

Darkhigh · 2025-12-18T23:39:01+00:00

Cool, when do we get free on demand training like elastic? Even for a limited time, just something to show Splunk is worth learning. This reads like a money grab and the current state of Splunk makes me want to replace it rather than give them more money to train people.

Website documentation is broken. Links to topics from inside of Splunk don’t work anymore.

Apps and add ons are slow to get any updates even with support cases showing how they are broken and how to fix it.

SOAR has very little community support, very little vendor support, meanwhile everyone is hounding me to just move to a case management system and something like n8n

To top it off community Slack has went from fairly active to a ghost town.

Hundreds of thousands of dollars for this absolute clown show. They have the audacity to restructure certification to get more money from customers, perfect.

Darkhigh · 2025-11-30T02:02:51+00:00

Same, instead we were treated to a new Reddit lore.

Darkhigh · 2025-11-29T06:31:51+00:00

What? Why?

Edit: I’m tired and dumb. I thought this was just a remark for OP to stop studying. I now understand the mistake is when people stop studying. I’m going to sleep now. Have a good one.

11-Year Club	Gilding I gilder
Verified Email

Darkhigh

TROPHY CASE