Following the post yesterday, I decided as an experiment to set up Splunk to index and aid in the analysis of the logs being collected. The interface is nice and clean. I’ve used this before in a production setting but we’ll see how it correlates to the network traffic collected later after the pilot test. I have appended a screenshot below.
I have some more experimenting with Splunk, but I may use it during the analysis stage of this project.