-
attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
My advice… Don’t rush. Study the material and get a good understanding of the fundamentals. Each certification builds on the previous ones. If Splunk is a path you want to pursue, build those fundamentals. Put in the reps in a lab. Download BOTS, attack range data sets. Take a look at Splunk & Machine Learning YouTube channel. His videos are fantastic and he maintains a GitHub repo so you can use the datasets to practice what you learned on the video.
I haven't had much time to work on a BoTSv3 (Boss of the SOC Version 3) guide yet, but the GitHub guide for it should do the trick. I prefer video guides, but the README on GitHub is decent. At a high-level, you will need to install Splunk, install the needed apps+add-on, and finally install the dataset. Here is the GitHub repo for the dataset: https://github.com/splunk/botsv3