I work on corporate investigations and incident response. I use Splunk Cloud Platform to investigate user frauds, cases related to malware investigations, and anomalies
In terms of the benefits of the product, I would say it is my go-to tool. Regarding getting all the data from Windows event…