SURGe Security Research Team
Research to reinforce the blue team
Expertise to help solve security problems
The SURGe team focuses on in-depth analysis of the latest cybersecurity news and finding answers to security problems. All of this is delivered to you in the form of research, rapid response guides, suggested reading and events.
Evaluating CA Trustworthiness
SURGe analyzed more than five billion TLS certificates to find out if the Certificate Authorities we rely on are really worthy of our trust.
Analysis of ransomware binaries
SURGe tested 10 of the top ransomware variants to see how long you have until ransomware encrypts your system.
Macro-Level ATT&CK analysis
SURGe combined annual threat reports to highlight adversary behavior via MITRE ATT&CK and help inform defensive planning.
Investigating Generative AI Email Translations
SURGe evaluated generative AI’s ability to translate email prompts to determine if it could better enable attackers to craft more sophisticated messaging.
Chrome Browser Extension Analysis
SURGe examined whether these extensions facilitate a better browsing experience or represent potential threats lurking in plain sight.
More from SURGe
Bluenomicon: The Network Defender’s Compendium
Step into the mystical realm of the Bluenomicon – a collection of essays penned by cybersecurity wizards.
The PEAK Threat Hunting Framework
Take your threat hunting program to a new level with the platform-agnostic hunting framework from SURGe.
The Security Detail
In this podcast, co-hosts Audra Streetman and Kirsty Paine interview security experts about the top threats that they’re seeing in their particular vertical.
SURGe blogs
Highlights on the latest SURGe research, cybersecurity insights and advice for making the most of Splunk Security
Monthly security staff picks
A curation of industry articles, papers and presentations recommended by Splunk security experts.
Videos and Presentations
Learn more about SURGe research and view presentations from the team.
Added security defenses
Building on rapid response guides, the Splunk Threat Research Team creates detection searches and Splunk SOAR playbooks (where applicable). Learn more about the Splunk Threat Research Team.
Related security products
Protect your business and elevate your security operations with a best-in-class data platform, advanced analytics and automated investigations and response.
Splunk Attack Analyzer
Automatically detect and analyze the most complex credential phishing and malware threats.
Splunk Enterprise Security
Industry-defining SIEM to quickly detect, investigate, and respond to threats.
Splunk SOAR
Work smarter by automating repetitive security tasks, respond to incidents in seconds, and increase analyst productivity
and accuracy to better protect your business.
Splunk User Behavior Analytics
Secure against unknown threats through user and entity behavior analytics.
