Can't Hide in 3D

Sep 5, 2025

In a sea of millions of security events, one workstation literally stood out, floating high above all the others when I transformed flat logs into a 3D visualization.

Read →

2 Comments

Haylee

Sep 12

This is incredible. I've done some meta-scoring style stuff before:

https://splunk.github.io/rba/searches/risk_incident_rule_ideas/#events-from-multiple-sourcetypes

but I *love* the idea of giving labels to other things to dc() on for more dimensionality. Definitely going to build on this! Thank you. ✨

Your welcome Haylee (RBA Queen) ping me if you want to flush out any extra ideas. 😎

Reply

Share

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts

THOR Collective Dispatch

Can't Hide in 3D