Is there any information about how to use splunk security essentials with Linux forwarders? Looks like a lot of the use cases are for searching windows logs. Is there a way to make conversions of the search queries in the use cases so they will work with Linux log files and have other people tried this?
Hmmm 🙂
Give these a shot ? Not exactly a replacement however there is some decent examples .