This 10-minute lab is designed to highlight WWT's complete security offerings and the unique value of each key component (ES, UBA, Phantom). The lab is designed to show the value of the content/capabilities with currently available products including highlighting areas of overlap in functionality.
Goals & Objectives
Hardware & Software
- Splunk Enterprise Platform 7.1 or higher.
- Splunk User Behavior Analytics 4.0 or higher.
- Apache Hadoop.
- 3x Red Hat/Centos Linux server (node).
- 50GB UBA installation.
- 1TB for metadata storage.
- 1TB for node running Spark service.