Splunk User Credentials

Description

General

• Documentation: https://docs.splunk.com/Documentation/Splunk/8.1.0/Security/Secureyouradminaccount
• Summary: Splunk is a company providing data analysis software. This detector focuses on detecting admin credentials for Splunk Enterprise.

Revoke the secret

The password can be reset as described in the documentation.

Details for Splunk User Credentials

• Family: identifiers

• Category: monitoring

• Company: Splunk

• High recall: False

• Validity check available: False

• Analyzer available: False

• Minimum number of matches: 2

• Occurrences found for one million commits: 0.03

• Prefixed: False