Penetration Testing with Splunk: Leveraging Splunk Admin Credentials to Own the Enterprise
Update 7/21/2016: Splunk has released an excellent blog post covering the best practices for deploying Splunk securely: http://blogs.splunk.com/2016/07/10/best-practices-in-protecting-splunk-enterprise/ . If you are unsure if you have deployed your Splunk in a secure manner, review these tips and the referenced documentation from Splunk…