Splunk enterprise stable solution
Splunk Enterprise is used in the company by the IT department. Mainly to monitor security events on process-relevant systems where the …
Overview
What is Splunk Enterprise?
Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Custom dashboards and workspaces (54)8.585%
- Centralized event and log data collection (53)6.565%
- Event and log normalization/management (53)6.060%
- Correlation (52)6.060%
Reviewer Pros & Cons
Pricing
N/A
Unavailable
What is Splunk Enterprise?
Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
40 people also want pricing
Alternatives Pricing
What is Blumira?
Blumira’s cloud SIEM platform offers both automated threat detection and response, enabling organizations of any size to more defend against cybersecurity threats in near real-time. It's goal is to ease the burden of alert fatigue, complexity of log management and lack of IT visibility.
Product Demos
Splunk Incident Review Demo
YouTube
Splunk Threat Intelligence Demo
YouTube
Splunk Enterprise Security | Splunk Enterprise Installation | Splunk Training | Edureka
YouTube
Features
Return to navigation
Product Details
- About
- Integrations
- Competitors
- Tech Details
- FAQs
What is Splunk Enterprise?
Splunk Enterprise enables users to find out what is happening in a business and take meaningful action. It automates the collection, indexing and alerting of machine data that's critical to operations, so that users can uncover the actionable insights from data — no matter the source or format. Leverage artificial intelligence and machine learning for predictive and proactive business decisions.
Splunk Enterprise Integrations
Splunk Enterprise Competitors
Splunk Enterprise Technical Details
| Operating Systems | Unspecified |
|---|---|
| Mobile Application | No |
Frequently Asked Questions
Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.
SolarWinds Loggly and LogRhythm NextGen SIEM Platform are common alternatives for Splunk Enterprise.
Reviewers rate Incident indexing/searching highest, with a score of 8.9.
The most common users of Splunk Enterprise are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(455)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Pros
- Cons
- Recommendations
Valuable Log Gathering and Summarization: Users have expressed positive opinions about Splunk's ability to gather and summarize log messages from multiple sources. Many reviewers find this feature valuable, as it allows them to easily access and analyze log data in a centralized location without the need for manual aggregation.
Simplicity and Advanced Search Capabilities: Splunk's reporting functionality is highly regarded by users for its simplicity and advanced search capabilities. Several reviewers appreciate how easy it is to use Splunk's reporting features, while also being able to perform complex searches that provide detailed insights into their data.
Effective Web Traffic Catching and Dashboards: The effectiveness of Splunk in catching web traffic and providing helpful dashboards is another aspect praised by users. Many reviewers highlight how Splunk's web monitoring capabilities enable them to track website activity effectively, while the intuitive dashboards allow for quick visualization and analysis of important metrics.
Confusing User Interface: Some users have reported that the user interface in Splunk can be perplexing, leading to difficulties in quickly performing tasks and navigating the software.
Limited Integration with Excel: Users have expressed their desire for improved integration between Splunk and Excel when it comes to creating reports and dashboards. They feel that better connectivity and seamless data transfer would enhance their workflow.
Steep Learning Curve: Several users have mentioned the complexity of Splunk's architecture, requiring a dedicated team of engineers to effectively manage and optimize its performance. This steep learning curve can pose challenges for new users who may need additional time and resources to fully grasp the intricacies of the platform.
Based on user reviews, the following recommendations emerged for using Splunk:
-
Ensure the correct subscription: Users emphasized the importance of having the correct subscription for Splunk to avoid login issues and fully utilize its features. They recommend careful planning of the deployment and learning as much as possible before implementing a large installation.
-
Thoroughly investigate anomalies: While Splunk's great dashboards for troubleshooting are praised, users advise against relying solely on system alerts generated by Splunk. They suggest continuing to investigate any anomalies and carefully setting up sources and background data in Splunk.
-
Utilize Splunk's log analysis capabilities: Many users recommend Splunk as a valuable tool for log analysis and improving the quality of current processes. They find it helpful for debugging integration issues and consider it suitable for large-scale applications/systems. Users appreciate its ability to connect to individual boxes and view multiple logs simultaneously.
It should be noted that some users suggest that there may be better and cheaper alternatives for small to medium-sized businesses, while others propose improvements to the search result UI and pricing structure to attract more users in the industry.
Attribute Ratings
Reviews
(26-50 of 55)Companies can't remove reviews or game the system. Here's why
December 14, 2018
Splunk for log collection, indexing, analysis & dashboarding
We have also used ELK (Elastic Logstash Kibana) with some benefits, but Splunk is way better than ELK.
We also use AWS CloudWatch for Lambdas that are written in AWS. However CloudWatch is not a replacement for Splunk.
We also use AWS CloudWatch for Lambdas that are written in AWS. However CloudWatch is not a replacement for Splunk.
December 12, 2018
We've tried the rest and now we're back on Splunk!
We've tried Sumo before and, while it did improve while we were using it, we ended up often pushing it to its limits, and at times it would fall over. The ingestion limits would at times be restrictive and our systems would generate more than it could handle, which would force us to develop a pipeline to handle logs and ensure they got to Sumo without being lost in translation.
Many products like open source ELK stack tools were evaluated. Splunk stacks up against them well due to its more enterprise-related features. Though the learning curve is a little steeper, according to many, the benefits far outweigh any potential negatives. The ease and small amount of time in which it can be deployed, add some real dollar value.
We have several network and server monitoring tools due to legacy agreements and consolidation of teams over time. We will be eliminating several of these tools because Splunk does so much that they are not all needed. We have also customized Splunk to meet other needs in a effort to have a single platform for monitoring our environment.
April 10, 2018
Splunk it!
Splunk's graphical interfaces or dashboards was the big reason for using it for log analysis. All the products are able to trap logs but each has a limited mechanism for correlating the logs into a usable interface for analyzing. This is where splunk prospers. Splunk's main function is the correlation of logs where the others are built to do a lot more.
March 21, 2018
Splunk Enterprise Review
March 02, 2018
Proactive log monitoring with Splunk Light
- ELK Stack and New Relic APM
ELK stack required too much infrastructure/configuration, NewRelic was expensive.
December 01, 2017
My Dive into using Splunk
I didn't get to fully evaluate Logstash as our corporation was already using Logstash, but both seemed like viable solutions to the problem that we were having. I wanted to evaluate Logstash some more, both did seem like they would work for the business needs that we had, we went with splunk as many teams were already using it.
November 13, 2017
Splunk will make your job easier!!
Our current SIEM device is outdated and no longer can keep up with the functionality we get with Slunk Enterprise. The reporting alone has made this product worthwhile and the customization allows us to tailor make the product for easy consumption. Upper management is happy with the reduced costs while gaining more security features.
September 14, 2017
Splunk for new users
- Bash and autosys
I wanted to learn a new language that I can quickly master and implement. Splunk is easy, fun to use and best of all, it can be developed in hours not days or weeks. Splunk is fundamentally a programming language that is minimal but yet powerful enough to collect, analyze and visualize data.
August 31, 2017
Splunk in a production environment is a must-have today
SAP HANA, Lumira, Business Objects and Designer
ThingWorx
We use all of them. Either corporate policy, or simply because every tool has specific strengths, and it also depends very much on how keen the data analysts are in working with a particular platform. In production, where we have lots of M2M logs, Splunk is the preferred system.
ThingWorx
We use all of them. Either corporate policy, or simply because every tool has specific strengths, and it also depends very much on how keen the data analysts are in working with a particular platform. In production, where we have lots of M2M logs, Splunk is the preferred system.
- Qradar
Splunk is proving to be a formidable replacement for Qradar, which we had as our previous SIEM. Qradar was powerful, but not easy to customize and quite limited. Splunk is not per se a "SIEM" but it can be in the way you used it. Also there is an Enterprise Security App that is available to buy and sit on top of Splunk, and that will take care of any concerns with needing a full-fledged SIEM. Splunk wins.
September 16, 2016
Splunk Implementor review
- HP Arcsight
Cost, flexibility, management overhead.
December 17, 2015
Got Splunk?
Splunk is the industry leading log correlation company. After a presentation and POC, it was clear to go with the best.
December 14, 2015
Splunk running strong
- BearTail grep, Lumberjack and Logstash
Splunk offers a simple out of the box setup. The enterprise installation was completed in less than four hours. Pricing for Splunk is high, but the benefits far out way the price impact. Other tools were good but did not offer the various types of integration. Support for the Splunk tool is outstanding; it has a strong community base; sales reps constantly check in and work with Splunk engineers to fine tune special requests or needs.
December 14, 2015
If you must analyze a ton of data then Splunk is your solution.
- ELK
While ELK may be free because of its open source genesis, it suffers greatly due to its immaturity. As I've already mentioned, ingesting data into Splunk is far easier than with ELK. Splunk also has a ton of free "bolt ons" that include pre-made dashboards to drive immediate value into your implementation. Splunk support and documentation is far better than with other applications I've supported in the past and especially so with ELK.
December 11, 2015
Powerful tool with a big learning curve
Haven't evaluated any other tools. Of course there are many other vendors in the space but Splunk continues to be the market leader and to maintain its position in Gartner's magic quadrant. Haven't used Elasticsearch but hear very highly of it, offering a better licensing model with a smaller learning curve compared to Splunk.
December 08, 2015
For real time data analyzing get splunk.
December 08, 2015
Splunk: Dynamic and Fast compliance tool
- Kibana, Logstash and Graylog2
Apart from cost, Splunk overcomes and supersedes all other products considering all the features and user experience. Splunk is fast as compared to other products. The results shown in the form of various types of graphs are really helpful while doing comparison with other datasets.
December 02, 2015
Splunk - the most flexible SIEM tool on the market.
- HP Arcsight and IBM Security QRadar
Splunk is certainly much more versatile than either of these three products. Unless ArcSight makes a "connector" for your product, you will be required to use Flex Connectors which is an additional license and apparently requires some serious development. Without Logger, you can't perform free form searches so you must know how your data is being normalized before you can find it.
McAfee Nitro uses Flash which presents a number of challenges itself. During our POC, it also misidentified McAfee Virus Scan Enterprise updates as malware traffic.
QRadar neither excelled in any one place and performed poorly during our POC, but it was unable to be as flexible as Splunk with custom data sources.
December 01, 2015
Splunk- The Spunky Compliance Tool
- Adobe Workbench (i.e. Insight)
Adobe Workbench has better dymanic selection allowing non technical users to quickly query the data. However, Splunk can table the data more effectively.
November 11, 2015
Splunk in a nutshell
Loggly, LogLogic, AppSumo. Every one of these products have a scalability problem beyond the terabyte range and gets tremendously expensive in the long run keeping data in the cloud
February 25, 2015
Good Tool for log mining
Score 8 out of 10
Vetted Review
Verified User
No other tools used
February 25, 2015
Big data indexing - Splunk
Score 8 out of 10
Vetted Review
Verified User
July 08, 2014
Splunk in the Storage Arena
Score 9 out of 10
Vetted Review
Verified User
SumoLogic is another tool we've tested. Sumologic is late to the game & has some nice idea's but it is not nearly as mature.