Skip to main content
TrustRadius

Overview

What is Splunk Enterprise?

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

Read more
Recent Reviews

Great if you have the money

7 out of 10
October 24, 2023
We use Splunk Enterprise as a SIEM and a separate pool to use for medical record auditing. The SIEM catalogues information from multiple …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 13 features
  • Custom dashboards and workspaces (53)
    8.2
    82%
  • Centralized event and log data collection (52)
    7.2
    72%
  • Event and log normalization/management (52)
    4.5
    45%
  • Correlation (51)
    4.3
    43%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is Splunk Enterprise?

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

38 people also want pricing

Alternatives Pricing

What is Blumira?

Blumira’s cloud SIEM platform offers both automated threat detection and response, enabling organizations of any size to more defend against cybersecurity threats in near real-time. It's goal is to ease the burden of alert fatigue, complexity of log management and lack of IT visibility.

Return to navigation

Product Demos

Splunk Incident Review Demo

YouTube

Splunk Threat Intelligence Demo

YouTube

Splunk Enterprise Security | Splunk Enterprise Installation | Splunk Training | Edureka

YouTube
Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

7.3
Avg 7.8
Return to navigation

Product Details

What is Splunk Enterprise?

Splunk Enterprise enables users to find out what is happening in a business and take meaningful action. It automates the collection, indexing and alerting of machine data that's critical to operations, so that users can uncover the actionable insights from data — no matter the source or format. Leverage artificial intelligence and machine learning for predictive and proactive business decisions.

Splunk Enterprise Integrations

Splunk Enterprise Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.

SolarWinds Loggly and LogRhythm NextGen SIEM Platform are common alternatives for Splunk Enterprise.

Reviewers rate Incident indexing/searching highest, with a score of 9.4.

The most common users of Splunk Enterprise are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(447)

Attribute Ratings

Reviews

(1-25 of 55)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We had an old version of QRadar before Splunk. It was difficult to customize and difficult to pull in our data sources. It wound up being neglected and not providing value for us as an institution. We have also looked into other things like AlienVault but in general, the customizability to pull in things like an Oracle audit trail or nonstandard multiline SSO logs have been much easier in Splunk, if in fact, it was possible on other platforms.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
More features and easy to manage once configured and setup correctly. Stronger correlation engine compared to other products. Easily integrates with ServiceNow for ticket creation, automation, and building workflows. Helps in AiOPS more, as compared to other tools. Provides anomaly detection with powerful machine learning capabilities across various metrics.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
LogRhythm is a great SIEM Tool. But Splunk Enterprise is so much more than that. [It's] a Security Analytics Tool with no limitation. It depends on [organization's] size, budget[,] and also what exactly they are looking for.
April 14, 2020

Splunk leads the pack

Score 9 out of 10
Vetted Review
Verified User
Incentivized
We reviewed a number of different platforms and found Splunk to be the more mature product across the board. Splunk is the market leader and the rest of the industry chances them. We needed a platform from a company with the resources to continue development and meet new ever changing regulatory requirements.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Splunk is a better solution for log analyzing based on the complexity of data it can collect, analyze and store. Dynatrace is just in the beginning stage of collecting logs but this tool is good for user application monitoring. So they are different products and it may not be fair to go for an apple to apple comparison. That's why our bank is using both for a strong end to end monitoring solution.
Fraser Clark | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We originally used Kiwi Syslog but this was not able to keep up with the level of logs that were being sent to it. Also Kiwi does not allow you to search through logs, create alerts, etc. or any of the other features Splunk has. It is purely just a web GUI for syslog.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
All the logs from those security devices or systems are pumping to the Splunk Enterprise and being correlated by the Enterprise Security. However, there are some difficulties in tuning the Data Model, which results in a lot of false positive. This could occur due to the lack of technical skills our team has. To compensate that we are planning to engage with the Splunk Professional Service to fix the issue.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
The Solarwinds SIEM solutions are much more bare-bones and don't offer as many features as Splunk Enterprise. Still, they are also infinitely more affordable and provide precisely what's required for small to medium environments. Implementation is straight forward even for larger environments, and technical support is decent if issues. Overall it comes down to price. For an organization of 100 people, it's hard to recommend Splunk Enterprise when they can use a Solarwinds solution that falls under budget.
Johanes Siregar | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Splunk Light is lighter and less flexible compared to Splunk Cloud and Splunk Enterprise. However, it is also the most effective option for new or small organizations with a tight budget. Both Splunk Light and Splunk Enterprise are deployed on-premise while Splunk Cloud, as the name suggests, deployed on-cloud. In terms of Scalability and flexibility, Splunk Light also trailing at the last place, compared to Splunk Enterprise and Splunk Cloud.
ShuYun Du | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Splunk is easier to setup compare to ELK. It has better support, well-documented information plus the Splunk database which has an addon that built by them or the other users to help to improve the experience with Splunk. However, ELK is open-source and it is free. At the end of the day, they are doing similar things. However, with the help of different addons from Splunk database, it saves you more time on configurations by yourself.
November 20, 2019

Splunk: The log expert

Kuntal Das | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Splunk is a very useful, lightweight and simple tool to analyze logs. As a computer science student who loves coding, it is much more convenient to use. I can build custom queries for myself or a subset of the users. The language is much simpler than SQL and is much faster as well for large amounts of data. It is highly scalable and with a customizable dashboard, it becomes even more useful than LogRhythm which is not that flexible.
Score 8 out of 10
Vetted Review
Verified User
Splunk is the most intelligent tool I have ever worked on. It gives you hands-on experience on how logs actually look like. You can go through entire organization data at once using this tool. Also, by the use of data models, it's become so easy to use and work on.
Score 6 out of 10
Vetted Review
Verified User
Incentivized
We selected Splunk Light because people in our company had previous experience with it, the solution appeared to check all of our boxes, and the support structure gave Splunk a significant edge over open source solutions like the ELK stack.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Both Logstash and Greylog are open-source solutions that provide similar capabilities to Splunk. They are excellent products in their own right but tend to follow versus lead. Splunk is definitely a leader in the field.
Rounak Jangir | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We are using this because it has lots of advantage over others. And it seems to be a good fit for us. Splunk provides lot more features than others and its UI is user-friendly, so for a new developer, it would not be too difficult to use it and do something around it.
Brandon Holbrook | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Splunk Light was easy to install, has great support from the vendor, and great community support. Other logging solutions did not have these benefits when we were looking to buy Splunk. They were cheaper, but Splunk seemed to be the gold standard in log repository and indexing. Splunk Light was a perfect fit for what we needed.
Return to navigation