This project demonstrates detection of SSH brute-force attempts on a Linux system using Splunk Enterprise. It simulates SOC analyst workflows: detection, alerting, investigation, and documentation. (In Phases)
log-analysis incident-response cybersecurity siem soc linux-security threat-detection security-monitoring security-operations-center authentication-logs splunk-detection siem-content
-
Updated
Apr 1, 2026 - Python