Splunk Enterprise

Overview

Recent Reviews

Real-time smart meters

9 out of 10
August 17, 2021
Splunk is being using to track the status of electric utility smart meters which record customer energy usage. Smart meters send power …
Continue reading

Great for almost anything

9 out of 10
July 19, 2021
We use this across our different departments for security, app performance monitoring, host monitoring, data intelligence, correlation, …
Continue reading

Splunk leads the pack

9 out of 10
April 14, 2020
Splunk is our one stop shop for all log data. We send logs from everything from servers, routers, firewalls, switches, sans and …
Continue reading

Splunk Enterprise review

7 out of 10
March 06, 2020
Currently our bank has different departments with their own Splunk infrastructure. We are currently building a larger infrastructure to …
Continue reading

Won't you take me to Splunkytown

9 out of 10
February 29, 2020
We're using Splunk Enterprise to assist us with IT Operations and IT Security. We came to look at Splunk because when I entered the …
Continue reading

Reviewer Sentiment

N/A
Positive ()
N/A
Negative ()
Learn how we calculate reviewer sentiment

Awards

TrustRadius Award Top Rated 2020
TrustRadius Award Top Rated 2019

Popular Features

View all 13 features

Custom dashboards and workspaces (100)

9.8
98%

Correlation (49)

9.8
98%

Event and log normalization/management (98)

9.6
96%

Centralized event and log data collection (50)

9.4
94%

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of Splunk Enterprise, and make your voice heard!

Pricing

View all pricing
N/A
Unavailable

What is Splunk Enterprise?

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

11 people want pricing too

Alternatives Pricing

What is AlienVault USM?

AlienVault® Unified Security Management® (USM) delivers threat detection, incident response, and compliance management in one unified platform. It is designed to combine all the essential security capabilities needed for effective security monitoring across cloud and on-premises environments,…

What is SolarWinds Kiwi Syslog Server?

Solarwinds® Kiwi Syslog® Server is a syslog management tool for network and systems engineers. It receives syslog messages and SNMP traps from network devices (routers, switches, firewalls, etc.), and Linux®/Unix® hosts. Users can filter and view these messages based on time, hostname, severity,…

Features Scorecard

Security Information and Event Management (SIEM)

9.0
90%

Product Details

What is Splunk Enterprise?

Splunk Enterprise enables users to find out what is happening in a business and take meaningful action. It automates the collection, indexing and alerting of machine data that's critical to operations, so that users can uncover the actionable insights from data — no matter the source or format. Leverage artificial intelligence and machine learning for predictive and proactive business decisions.

Splunk Enterprise Integrations

Splunk Enterprise Competitors

Splunk Enterprise Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Comparisons

View all alternatives

Frequently Asked Questions

What is Splunk Enterprise?

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

What is Splunk Enterprise's best feature?

Reviewers rate Correlation and Custom dashboards and workspaces highest, with a score of 9.8.

Who uses Splunk Enterprise?

The most common users of Splunk Enterprise are from Enterprises (1,001+ employees) and the Information Technology & Services industry.

Reviews

(1-25 of 54)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Review Source
We had an old version of QRadar before Splunk. It was difficult to customize and difficult to pull in our data sources. It wound up being neglected and not providing value for us as an institution. We have also looked into other things like AlienVault but in general, the customizability to pull in things like an Oracle audit trail or nonstandard multiline SSO logs have been much easier in Splunk, if in fact, it was possible on other platforms.
Score 10 out of 10
Vetted Review
Verified User
Review Source
More features and easy to manage once configured and setup correctly. Stronger correlation engine compared to other products. Easily integrates with ServiceNow for ticket creation, automation, and building workflows. Helps in AiOPS more, as compared to other tools. Provides anomaly detection with powerful machine learning capabilities across various metrics.
Score 10 out of 10
Vetted Review
Verified User
Review Source
LogRhythm is a great SIEM Tool. But Splunk Enterprise is so much more than that. [It's] a Security Analytics Tool with no limitation. It depends on [organization's] size, budget[,] and also what exactly they are looking for.
April 14, 2020

Splunk leads the pack

Score 9 out of 10
Vetted Review
Verified User
Review Source
We reviewed a number of different platforms and found Splunk to be the more mature product across the board. Splunk is the market leader and the rest of the industry chances them. We needed a platform from a company with the resources to continue development and meet new ever changing regulatory requirements.
Score 7 out of 10
Vetted Review
Verified User
Review Source
Splunk is a better solution for log analyzing based on the complexity of data it can collect, analyze and store. Dynatrace is just in the beginning stage of collecting logs but this tool is good for user application monitoring. So they are different products and it may not be fair to go for an apple to apple comparison. That's why our bank is using both for a strong end to end monitoring solution.
Fraser Clark | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source
We originally used Kiwi Syslog but this was not able to keep up with the level of logs that were being sent to it. Also Kiwi does not allow you to search through logs, create alerts, etc. or any of the other features Splunk has. It is purely just a web GUI for syslog.
Score 9 out of 10
Vetted Review
Verified User
Review Source
All the logs from those security devices or systems are pumping to the Splunk Enterprise and being correlated by the Enterprise Security. However, there are some difficulties in tuning the Data Model, which results in a lot of false positive. This could occur due to the lack of technical skills our team has. To compensate that we are planning to engage with the Splunk Professional Service to fix the issue.
Score 10 out of 10
Vetted Review
Verified User
Review Source
The Solarwinds SIEM solutions are much more bare-bones and don't offer as many features as Splunk Enterprise. Still, they are also infinitely more affordable and provide precisely what's required for small to medium environments. Implementation is straight forward even for larger environments, and technical support is decent if issues. Overall it comes down to price. For an organization of 100 people, it's hard to recommend Splunk Enterprise when they can use a Solarwinds solution that falls under budget.
Johanes Siregar | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source
Splunk Light is lighter and less flexible compared to Splunk Cloud and Splunk Enterprise. However, it is also the most effective option for new or small organizations with a tight budget. Both Splunk Light and Splunk Enterprise are deployed on-premise while Splunk Cloud, as the name suggests, deployed on-cloud. In terms of Scalability and flexibility, Splunk Light also trailing at the last place, compared to Splunk Enterprise and Splunk Cloud.
ShuYun Du | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source
Splunk is easier to setup compare to ELK. It has better support, well-documented information plus the Splunk database which has an addon that built by them or the other users to help to improve the experience with Splunk. However, ELK is open-source and it is free. At the end of the day, they are doing similar things. However, with the help of different addons from Splunk database, it saves you more time on configurations by yourself.
November 20, 2019

Splunk: The log expert

Kuntal Das | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source
Splunk is a very useful, lightweight and simple tool to analyze logs. As a computer science student who loves coding, it is much more convenient to use. I can build custom queries for myself or a subset of the users. The language is much simpler than SQL and is much faster as well for large amounts of data. It is highly scalable and with a customizable dashboard, it becomes even more useful than LogRhythm which is not that flexible.
Score 8 out of 10
Vetted Review
Verified User
Review Source
Splunk is the most intelligent tool I have ever worked on. It gives you hands-on experience on how logs actually look like. You can go through entire organization data at once using this tool. Also, by the use of data models, it's become so easy to use and work on.
Score 6 out of 10
Vetted Review
Verified User
Review Source
We selected Splunk Light because people in our company had previous experience with it, the solution appeared to check all of our boxes, and the support structure gave Splunk a significant edge over open source solutions like the ELK stack.
Score 9 out of 10
Vetted Review
Verified User
Review Source
Both Logstash and Greylog are open-source solutions that provide similar capabilities to Splunk. They are excellent products in their own right but tend to follow versus lead. Splunk is definitely a leader in the field.
Rounak Jangir | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source
We are using this because it has lots of advantage over others. And it seems to be a good fit for us. Splunk provides lot more features than others and its UI is user-friendly, so for a new developer, it would not be too difficult to use it and do something around it.
Brandon Holbrook | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source
Splunk Light was easy to install, has great support from the vendor, and great community support. Other logging solutions did not have these benefits when we were looking to buy Splunk. They were cheaper, but Splunk seemed to be the gold standard in log repository and indexing. Splunk Light was a perfect fit for what we needed.
Score 9 out of 10
Vetted Review
Verified User
Review Source
We've tried Sumo before and, while it did improve while we were using it, we ended up often pushing it to its limits, and at times it would fall over. The ingestion limits would at times be restrictive and our systems would generate more than it could handle, which would force us to develop a pipeline to handle logs and ensure they got to Sumo without being lost in translation.