Now more than ever, detecting the latest attack techniques right in Splunk Enterprise Security, the market-leading SIEM, is a critical capability. This updated guide reflects significant changes in the threat landscape since October 2022, including:
- The addition of ESXi as a platform in ATT&CK Enterprise v17 (April 2025).
- New techniques for AI security and detection.
- Enhanced coverage for Cisco environments.
- Expanded cloud security detections.
- Specialized detections for lateral movement and privilege escalation.
