Splunk Enterprise - Présentation
Description du logiciel Splunk Enterprise
Splunk Enterprise is a cloud-based platform designed to assist businesses with big data management and analysis of machine data. Key features include data visualization, performance metrics, data collection, real-time search, indexing, KPI tracking, reporting, and monitoring.
The application lets managers create custom dashboards, add visualizations, adjust interface components, and convert it to forms. Splunk Enterprise helps administrators conduct continuous monitoring of operational events to detect vulnerabilities and receive event-triggered alerts in real-time. With its workload management feature, users can reserve storage capacity of system resources for data import/ingestion of high-priority tasks. Splunk Enterprise also enables team members to detect system anomalies and perform data clustering to filter out corrupted data.
Splunk Enterprise offers integration with various third-party platforms including Microsoft Excel, Tableau, Okta, PingFerderate, Azure AD, CA SiteMinder, OneLogin, and Optimal IdM. The solution is suitable for businesses in industries such as aerospace, communications, healthcare, manufacturing, finance, energy, and utilities.
Splunk Enterprise - Présentation
Prix
Types de licence
Contact Splunk for more details
Splunk Enterprise - Fonctionnalités
Captures d'écran
Splunk Enterprise - Avis
Splunk Enterprise - Avis
Offers more than you think
We've used the software to detect layer 7 attacks, unearth issues we didn't realize were happening and gives us end to end insight into our stack.
Good enterprise system for security SIEM, monitoring and data aggregation and visualizations.
I've used Splunk for over 8 years and it is my go-to SIEM. There are tons of apps and integrations. Good for correlation and leveraging the Common Information Model will make your life much happier.
Complete solution for Log centralization
We use Splunk to collect logs information for our application which deployed in AWS, it collects the application logs directly from Application EC2 and also integrates with CloudWatch, Load Balance and other AWS component to collect AWS logs relate to our Application, we also get the log from AWS billing report to track our spent in AWS.
Everything on every point is under your control.
Splunk Enterpise is the best security information and event management tool ever. It allows you to see far most end point of your system, everything stays under control.
Spunk Review
Comparatif avec les logiciels similaires : note globale
Comparer avec les alternatives
Offers more than you think
Avantages
The system is highly intuitive to use. It is faster than other solutions I've used on the market and has a huge library of 3rd party plugins to get more from the system. It is easy to create scheduled searches, dashboards, reports etc. but there are a number of additional plugins (at an extra cost) to help with security, single pane of glass and metric collection.
Inconvénients
It offers challenges for a decentralized working model. Where Splunk is centrally managed, it is easy to ensure that best practices are maintained. Where the system is opened up for an entire department to utilize and on-board their logs, it becomes more difficult. However, with some creative thinking and good process, this issue can be overcome.
Good enterprise system for security SIEM, monitoring and data aggregation and visualizations.
I've used Splunk for over 8 years and it is my go-to SIEM. There are tons of apps and integrations. Good for correlation and leveraging the Common Information Model will make your life much happier.
Avantages
The power of it. It's a very good tool that does amazing things. Nothing comes close to it. We used it for full view of data, full transaction. Security appliance consolidation.
Inconvénients
There is a learning curve and a new language you have to learn, but it's intuitive and you can pick it up pretty quickly.
Complete solution for Log centralization
We use Splunk to collect logs information for our application which deployed in AWS, it collects the application logs directly from Application EC2 and also integrates with CloudWatch, Load Balance and other AWS component to collect AWS logs relate to our Application, we also get the log from AWS billing report to track our spent in AWS.
Avantages
Splunk has very strong query language event complex commands like Join, subquery or aggregate which much the same with SQL query with good report UI to display result. Set Splunk system is easy with install Splunk server and its agent in every node then configure logs location to collect. It provides many built-in Apps to collect logs from other popular tools such as AWS, Salesforce, Kafka...
Inconvénients
Splunk query language is quite hard to learn for new user and its query error is too generic for troubleshooting.
Everything on every point is under your control.
Splunk Enterpise is the best security information and event management tool ever. It allows you to see far most end point of your system, everything stays under control.
Avantages
The fature of scrpint/coding your own app inside the Splunk is very useful. I developed a lot of dashboards for our infrastructure, customized alarms, email notfications helps you to see what is happening in the system. It definetely deserves the money our company have had paid.
Inconvénients
When you have a real big infrastructure, Splunk user interface gets a bit slow. Waiting for search results a bit annoying.
Spunk Review
Avantages
It allows me to bring a lot of information into one friendly view. It's a great security audit tool.
Inconvénients
It has limited functionality. It is a very memory intensive system. It does not integrate with Lennox.
Comparatif avec les logiciels similaires : recommandation utilisateur
Comparer avec les alternatives
Splunk Enterprise - Prix
Splunk Enterprise - Prix
Contact Splunk for more details
Contact Splunk for more details
Comparatif avec les logiciels similaires : rapport qualité-prix
Comparer avec les alternatives
Splunk Enterprise - Fonctionnalités
Splunk Enterprise - Fonctionnalités
Comparatif avec les logiciels similaires : note sur les fonctionnalités
Comparer avec les alternatives
Catégories
Catégories
Vidéos et tutoriels
Vidéos et tutoriels
Plus d'informations sur Splunk Enterprise
Plus d'informations sur Splunk Enterprise
Splunk Enterprise - Principales fonctionnalités
- Access Control
- Anti Spam
- Anti Virus
- Baseline Manager
- Capacity Monitoring
- Compliance Management
- Content Management
- Dashboard
- Diagnostic Tools
- Event Logs
- Event Tracking
- Filtered Views
- Hardware Inventory
- IP Address Monitoring
- Incident Management
- OLAP
- Patch Management
- Policy Management
- Predictive Analytics
- Predictive Modeling
- Real Time Monitoring
- Remote Access
- Resource Management
- SLA Management
- Self Service Portal
- Server Performance
- Simulation Models
- Software Inventory
- Uptime Monitoring
- User Activity Monitoring
- Visual Discovery
- Visualization
- Vulnerability Scanning
- Web Threat Management
- Web Traffic Reporting
Splunk Enterprise - FAQ
Splunk Enterprise - FAQ
Voici quelques-unes des questions fréquentes sur Splunk Enterprise.
Q. Quels sont les types de licence disponibles pour Splunk Enterprise ?
Types de licences disponibles pour Splunk Enterprise :
À partir de: 225,00 $US/mois
Type de licence: Abonnement
Essai gratuit: Disponible
Contact Splunk for more details
Q. Quelles sont les principales fonctionnalités du logiciel Splunk Enterprise ?
Fonctionnalités du logiciel Splunk Enterprise :
- Access Control
- Anti Spam
- Anti Virus
- Baseline Manager
- Capacity Monitoring
- Compliance Management
- Content Management
- Dashboard
- Diagnostic Tools
- Event Logs
- Event Tracking
- Filtered Views
- Hardware Inventory
- IP Address Monitoring
- Incident Management
- OLAP
- Patch Management
- Policy Management
- Predictive Analytics
- Predictive Modeling
- Real Time Monitoring
- Remote Access
- Resource Management
- SLA Management
- Self Service Portal
- Server Performance
- Simulation Models
- Software Inventory
- Uptime Monitoring
- User Activity Monitoring
- Visual Discovery
- Visualization
- Vulnerability Scanning
- Web Threat Management
- Web Traffic Reporting
Q. Qui utilise Splunk Enterprise ?
Utilisateurs habituels du logiciel Splunk Enterprise :
Grandes entreprises, Entreprises de taille moyenne
Q. Dans quelles langues Splunk Enterprise est-il disponible ?
Langues dans lesquelles Splunk Enterprise est disponible :
chinois (simplifié), chinois (traditionnel), anglais, français, allemand, italien, japonais, coréen, portugais, russe, espagnol
Q. Quels sont les types de licence disponibles pour Splunk Enterprise ?
Types de licences disponibles pour Splunk Enterprise:
Abonnement
Q. Splunk Enterprise prend-il en charge les appareils mobiles ?
Appareils pris en charge par Splunk Enterprise :
Android, iPhone, iPad
Q. Avec quelles applications Splunk Enterprise peut-il s'intégrer ?
Applications s'intégrant à Splunk Enterprise :
Infocyte, Microsoft Excel, Okta, OneLogin, Tableau
Q. Quelles sont les ressources d'aide disponibles pour Splunk Enterprise ?
Ressources d'aide disponibles pour Splunk Enterprise :
FAQ, Base de connaissances, Support en ligne, Support téléphonique, Tutoriels vidéo
We've used the software to detect layer 7 attacks, unearth issues we didn't realize were happening and gives us end to end insight into our stack.