hello all,
I belong to a SoC ans qe are testing several SIEM Solutions. The best way that we could find to become ourselfs comfortable with Splunk it is the BOTS appoach.
Now, refering to the score app when i follow the steps at https://github.com/splunk/SA-ctf_scoreboard when i get to step 11
Confirm the custom controller came up properly:
ls -l $SPLUNK_HOME/var/log/scoreboard
-rw------- 1 splunk staff 59 Sep 2 14:26 scoreboard.log
-rw------- 1 splunk staff 59 Sep 2 14:26 scoreboard_admin.log
i don't have the *.log files, can you help please
Thank you in advence,
PTL
... View more