SIEM Vendor Important Links Overview
it's very common for people to ask for learning, support sources on SIEM, here's an overview of such information.
Microsoft Azure Sentinel
DOCUMENTATION
https://aka.ms/asi_documentation
YOUTUBE
https://www.youtube.com/channel/UCGTUbqE3SJiLgtvWjIkSQuQ
WEBINARS
https://aka.ms/SecurityWebinars
FREE LEARNING
https://aka.ms/SentinelNinjaTraining
CONFERENCE SLIDES
PRODUCT BLOG
https://aka.ms/azuresentinelblog
APP DEVELOPMENT
https://github.com/Azure/Azure-Sentinel
SUPPORT
https://aka.ms/AzureSentinelMicrosoft
REQUEST FOR ENHANCEMENTS
https://feedback.azure.com/forums/920458-azure-sentinel
FREE or TRIAL DOWNLOAD
USER FORUM
https://aka.ms/AzureSentinelCommunity
REDDIT COMMUNITY
https://aka.ms/AzureSentinelReddit
https://aka.ms/AzureSentinelTwitter
https://aka.ms/AzureSentinelLinkedIn
Public User Chat Groups (not endorsed by vendor)
https://t.me/AzureSentinelSIEM
https://t.me/AzureSentinelSIEMFEED
IBM QRadar
DOCUMENTATION
https://ibm.biz/qradarknowledge
CONFERENCE
LEARNING FREE VIDEOS
https://ibm.ent.box.com/s/ich0yyiw54y0ek6s9a66xvtjku8e42rc
(Download the Security Intelligence Toturial, Demos & Use Cases PDF)
LEARNING OFFICIAL PAID COURSES
https://www.securitylearningacademy.com/
APP MARKET PLACE
https://exchange.xforce.ibmcloud.com/
APP DEVELOPMENT
https://developer.ibm.com/qradar/
SUPPORT
https://ibm.biz/qradarsupport
https://ibm.biz/qradarlogs Getting logs Instructions
REQUEST FOR ENHANCEMENTS
FREE or TRIAL DOWNLOAD
USER FORUM
Public User Chat Groups (not endorsed by vendor)
https://t.me/QRadarChat (Telegram)
https://t.me/QRadarFEED (IBM Qradar RSS Feed group)
ArcSight
DOCUMENTATION
https://community.softwaregrp.com/t5/ArcSight-Prod-Documentation/ct-p/ArcSight-Prod-Docs-Proxy
CONFERENCE
LEARNING FREE VIDEOS
LEARNING OFFICIAL PAID COURSES
https://microfocus.viewcentral.com/
APP MARKET PLACE
https://marketplace.microfocus.com/arcsight
APP DEVELOPMENT
https://marketplace.microfocus.com/arcsight/dev-signup
SUPPORT
https://softwaresupport.softwaregrp.com/
REQUEST FOR ENHANCEMENTS
Not found
FREE or TRIAL DOWNLOAD
https://software.microfocus.com/en-us/products/siem-data-collection-log-management-platform/free-trial
* Note this is only the Logger not the actual ESM (SIEM) product
USER FORUM
https://community.softwaregrp.com/t5/Protect724/ct-p/Protect724
Public User Chat Groups (not endorsed by vendor)
https://t.me/ArcSightChat (Telegram)
ELK (Elasticsearch, Logstash, Kibana)
DOCUMENTATION
https://www.elastic.co/guide/index.html
CONFERENCE
https://www.elastic.co/elasticon
LEARNING FREE VIDEOS
https://www.youtube.com/results?search_query=elasticsearch+playlist
* There are alot of free introduction videos, but most full online training courses are paid.
LEARNING OFFICIAL PAID COURSES
https://www.elastic.co/training
APP MARKET PLACE
https://www.elastic.co/solutions
* ELK does not have a app store, but different "solutions"
APP DEVELOPMENT
- ELK does not have a app store, but different products and solutions.
SUPPORT
https://www.elastic.co/support/welcome
REQUEST FOR ENHANCEMENTS
https://github.com/elastic/elasticsearch/issues
https://github.com/elastic/kibana/issues
https://github.com/elastic/logstash/issues
FREE or TRIAL DOWNLOAD
USER FORUM
Public User Chat Groups (not endorsed by vendor)
http://t.me/ElasticELK (Telegram)
Splunk
DOCUMENTATION
http://docs.splunk.com/Documentation
CONFERENCE
LEARNING FREE VIDEOS
https://www.splunk.com/en_us/training/free-courses/splunk-fundamentals-1.html
* Certification is also free of charge
LEARNING OFFICIAL PAID COURSES
https://www.splunk.com/en_us/training.html
APP MARKET PLACE
https://splunkbase.splunk.com/
APP DEVELOPMENT
SUPPORT
https://www.splunk.com/en_us/support-and-services.html
REQUEST FOR ENHANCEMENTS
http://www.splunk.com/index.php/submit_issue
FREE or TRIAL DOWNLOAD
https://www.splunk.com/en_us/download.html
USER FORUM
https://www.splunk.com/en_us/community.html
Public User Chat Groups (not endorsed by vendor)
https://t.me/joinchat/GD3DIAzJflGleAEMAMGKkA (Telegram)