How to set up a SOC Lab

This video will guide you through installing and configuring Splunk and Splunk forwarders on two machines. First, we will show you how to download and install Splunk on the main machine, which will act as the central repository for log data. You will learn how to set up an admin account and configure the basic settings. Next, we'll be able to guide you through the installation and configuration of Splunk forwarders on the second machine. We will show you how to set up a forwarding configuration and verify the connection between the forwarder and the central Splunk instance. Finally, we will demonstrate how to configure inputs on the forwarder machine to collect and send data to the central Splunk instance. You will learn how to monitor data flow and troubleshoot common issues. By the end of the video, you will understand how to install and configure Splunk and Splunk forwarders for efficient data collection from multiple sources. So, watch the video and start collecting and analyzing your log data like a pro! By TryHackMe