[Forwarded from Arizona Conservatives Take Action (Patriot)] What Are Splunk Logs? Why Are They So Important for the Audit?
@ArizonaConservatives Eric, Trooper, and Jerry break it down for us.
? What are Splunk logs❓
Eric: Splunk is a very popular security and distributed systems monitoring application that provides a dashboard for network operations personnel to catch abnormal events and changes across all connected computers and computerized equipment.
If they were using Splunk and were using it properly then there should be a record of many things that would help focus forensic audits.
Trooper: The logs capture critical data, like user_ID's, actions taken, date-timestamps, adjudication and other corrections or changes to votes, counts, rejections, etc... Look in any audit training manual: concealing, deleting, modifying, tampering, or refusing to provide access to logs - is in fact a criminal indicator.
? Why are Splunk logs important to the audit❓
Eric: Splunk logs would be absolutely critical to reveal what happened on election night and thereafter — whether or not curious Internet traffic happened, for one thing, and to show a trail of infiltration and/or manipulation. We absolutely need them.
Trooper: The reason the Splunk logs and keys are important is because they were configured to directly support the event recording of things like ballot-scanning, vote changing, tabulation counts and errors, etc... They offer critical insight and a record of what/ when/ how the machines were utilized in ballot handling and vote tabulating/adjustment processes.
The logs are public records because they are in fact germane to the voting/ballot tabulation, adjudication, rejection, and adjustment processes, among other things. This is material information. They are literally withholding evidence and intentionally obstructing the audit.
Jerry: I work in Cybersecurity and have experience with Splunk. That said, those logs will expose a trove of events that may have taken place on election day. It would have captured all anomalous behaviour as well as any outside network traffic that may have infiltrated the election systems. It's no wonder they don't want to release those logs as any halfway competent Security Analyst would be able to easily identify fraud. SIEM tools such as Splunk are specifically designed to not only detect a potential breach but to also provide an audit trail to get to the bottom of what happened
Eric: If there was any kind of security monitoring, like Splunk et al, we need to see those logs since they might show if hackers created new accounts with root access, etc., and other things including configuration that would show how packets were routed to/from election equipment. In a way, Splunk is like a real-time audit…as long as it is configured to catch the vulnerabilities that could alter results. If we’re mining for information, Splunk is gold.
Its importance cannot be understated.
The BOS needs to hand over the rest of the information, routers, logs, access, chain-of-custody everything.
❗️Please take a minute to call or email Paul Boyer who is blocking the contempt resolution, which would enable subpoena enforcement. And contact Senators Fann and Petersen to ask why they are not filing a motion to compel.
Contact details ?? https://t.me/ArizonaConservatives/2025
We haven’t come this far only to let the Supervisors get away with fraud. —-
I strongly suspect there was a cooridinated infrastructure set up to catch all manner of network traffic, and I bet they were watching cellular network traffic too. I think they have everything. I know just the normal hackers working with Pulitzer and others got a whole lot of data, and access to voting systems while elections were happening - which implies they have it all, basically.