Windows Personal Security app for Splunk
Windows Personal Security app for Splunk

Services dashboard

press to zoom
Windows Personal Security app for Splunk
Windows Personal Security app for Splunk

System dashboard

press to zoom
Windows Personal Security app for Splunk
Windows Personal Security app for Splunk

Alerts dashboard

press to zoom
Windows Personal Security app for Splunk
Windows Personal Security app for Splunk

Services dashboard

press to zoom
1/4
wpsicon.png
Windows Personal Security 
Windows Personal Security app for Splunk 
transforms Windows event log and Sysmon data into high fidelity visualizations, empowering you to monitor and analyze a continuous stream of data in real time and perform cybersecurity investigations in Splunk. WPS is the easiest way to gain visibility into Windows computers and harness the power of the machine data at your fingertips.

WPS features 6 interactive dashboards monitoring critical aspects of system activity including network data, services, browser activity, and authentication events to help users develop basic cybersecurity skills and identify potential cyberthreats.

WPS includes a security operations center with an alerts dashboard featuring 36 pre-built high value security alerts for the early detection of common

malware techniques used to target and compromise Windows endpoints. 

apppIcon_2x.png
Windows SOHO Security

Windows SOHO Security centralizes security operations for small office and home office environments with one or more Windows endpoints. Windows SOHO Security transforms data from 15 Windows event logs into high fidelity visualizations, empowering you to monitor a continuous stream of data, perform investigations, and improve the security posture of your SOHO network. With Windows SOHO Security, you can manage security for multiple Windows computers and harness the power of the machine data at your fingertips.

Windows SOHO Security features 10 dashboards, including a security operations center, 52 pre-built security alerts, MITRE integration, built-in security reports and custom drilldowns that you can build upon to suit your needs.

Windows SOHO Security provides visibility into a wide range of endpoint activities, including network connections, system services, scheduled tasks, WMI, authentication and logon events, Windows updates, Microsoft Office apps, command shell, Powershell, firewall, and browser activity. With Windows SOHO Security, you can add a powerful layer of defense for one computer or centrally manage all of your computers. 

Windows SOHO Security app for Splunk
Windows SOHO Security app for Splunk

Access Manager dashboard

press to zoom
Windows SOHO Security app for Splunk
Windows SOHO Security app for Splunk

Home

press to zoom
Windows SOHO Security app for Splunk
Windows SOHO Security app for Splunk

Auxiliary dashboard

press to zoom
Windows SOHO Security app for Splunk
Windows SOHO Security app for Splunk

Access Manager dashboard

press to zoom
1/5