Estimated Time
10
Difficulty
Easy
Point Value
10
Query Languages
SPL
Challenge Description
Start introducing more complex mathemtics into your SPL queries so you can start integrating them into all of your incident response and detection engineering workflows. In this challenge, you'll learn about the 'stats' and 'eval' command and how they can be used to find anomalies and perform baselining.
Log Source Types
Apache Logs
MITRE ATT&CK Techniques
Getting Started
1
Sign in or create an account to begin the challenge
2
Review the challenge description and log types
3
Click "Start Challenge" to begin your investigation