Splunk Enterprise Reviews

Big data is no problem for Splunk Enterprise

Comments: Splunk is a powerful and useful monitoring tool. Splunk's efficiency is enhanced by the ability to integrate third-party apps developed in-house. It's also interesting that we can incorporate a customs alert and dashboard. In most situations, it resolves the need to normalize data, allowing for the use of any and all data in business forecasting. It is analyzed for data that can be utilized to optimize spending plans and asset tracking.

Pros:

Without worrying too much about data type or normalization, Splunk Enterprise can efficiently manage massive amounts of data from numerous sources. Data may be accessed in a flash, and there are a number of options for tailoring and integrating data analysis workflows to create bespoke dashboards or utilizing apps from our other product partners.

Cons:

There isn't much I dislike about splunk, however if we have to be picky, it would be that it's more difficult to maintain as an administrator when splunk is installed on outdated architecture.

Splunk Enterprise is not just a tracing tool

Comments: My overall experience with Splunk Enterprise is really good. It is a powerfull tool to help you to tracing calls, using filters and customizable indexes.

Pros:

Intuitive, customizable and really usefull in everyday work. The different section "smart, quick and detailed" gives you the freedom to choice how to interact with the tool.

Cons:

Some bugs on the Alerts section to edit makes the experience worse than I expect.

Powerful tool to perform db queries

Comments: I used Splunk to surface and review platform logs

Pros:

Possibility to export query results in a variety of formats.

Cons:

User interface is not intuitive and it requires a steep learning curve

Splunk Enterprise is my go-to for analyzing large volumes of data quickly and effectively.

Pros:

The software is user-friendly and has powerful data visualization tools.

Cons:

I wish the pricing was more affordable for small businesses like mine, and some features can be overwhelming for beginners.

Great SIEM

Pros:

Incredibly powerful tool for log collection. It is very scalable and can be integrated with a wide variety of other tools and platforms. It is well-documented and supported by a large user community, making it easier to find solutions to common challenges.

Cons:

It feels somewhat dated compared to newer solutions on the market. Its interface and some functionalities haven't evolved as much as other modern tools. It can also be quite expensive.

Splunk review

Comments: I am using this tools since long time and overall it’s good tool.

Pros:

Capabilities and features of the tools provided are useful

Cons:

This is one of the costly tools Available in the market

Splunk is a great data management tool

Comments: I use it daily to locate information on users and devices.

Pros:

The ability to parse data and locate critical information is unparalleled

Cons:

Search tools could be a little more user friendly.

Bettering Cybersecurity With Splunk Enterprise

Pros:

It has amazing firewall protection features It makes handling security monitoring and improving networks security easy log monitoring is easy

Cons:

No regrets as Splunk Enterprise meets needs.

Splunk, a must try for all data management persons

Pros:

1. Excellent ML background 2. Dashboard looks classy 3. Multiple external entries possible unlike a lot other tools

Cons:

1. Very limited variations in reporting 2. Real-time model is not great 3. Not mobile friendly

Splunk-review

Comments: Excellent product, easy to integrate and use together with other products.

Pros:

The way it can be integrated to collate all required information at one place

Cons:

I have not see any least things so far in the usecases

Best Siem solution in market.

Comments: Overall experience is amazing, we are happy with this software as it can ingest any form of data and generate alerts quite swiftly.

Pros:

Easy to install agents on servers, it can parse any form of data easily, Splunk can detect anomalies quite easily and the UBEA feature is amazing.

Cons:

The cost of this solution is high, and customer service is bad. Apart from that Splunk SPL language is difficult to learn.

The most expensive tool, requiring highly-skilled employees, capable of limitless value

Comments: Splunk's SPL is a flexible, straight forward query-language with aspects of SQL, R, Python, and Bash. The fact that an analyst can learn to be an engineer through using the platform provides ease of growth. It is unmatched in its automation to make data actionable, while providing reporting and visualization capabilities.

Pros:

Splunk is provides a single tool for log aggregation, log analysis, and visualizations. Threat hunting, applying threat intelligence, and incident response are easily repeatable; pushing organizations to proactive security processes.

Cons:

Splunk is expensive, especially when an organizations is exploring and building new security or data use cases. It also requires a lot of engineering maintenance, making the quality of the data highly-dependent on the skill(s) of those supporting it. Many organizations do not maximize its benefit because it is poorly managed or supported by low-skilled employees.

Swiss Knife for everything about logs

Pros:

The product has a ton of Features. Everything what you Need when working with logs is already implemented

Cons:

Due to the rich set of capabilities regarding, searching, transforming and vizualzing data it‘s sometimes quite tricky to find all necessary query commands

Best SIEM out there.

Pros:

I used a lot of SIEMs in my career, Splunk is the best one out there. Comfortable, Easy to use, Great big data platform.

Cons:

Easy to use, versatile, A lot of options, dashboards

Perfect solution to handle big data

Pros:

I love its versatility to handle different kinds of data. While monitoring our internal data, Splunk Enterprise saved a lot of code with its real-time data monitoring and logs analysis feature.

Cons:

With the growth of the data, costs grew intensively which was out of the budget for our startup company. Initially setting up Splunk was complex as we were new to this.

Powerhouse in data management and analysis

Comments: A complex but rewarding journey of data exploration and anomaly detection.

Pros:

Powerful and versatile data mining tool with excellent integration capabilities.

Cons:

Challenging initial setup and learning curve, particularly with query language and high cost.

log Master

Comments: Overall i'm happy to use for any malicious activity is happened in the forwarder system its giving immediate alert system

Pros:

It's giving live alert, triggers, dashboard system based on rules we already set. the dashboard helps to see and virtualize the data.

Cons:

The only concern I feel it consumes the system space due to this my system running slow. without knowledge of Splunk query language, it is difficult to handle.

Powerful SIEM system that meets our expectations.

Comments: We are using Splunk Enterprise for log correlation, the analytics are accurate and it catches errors right away which improves our internal capabilities, it is a special service that collects data from different data sources very accurately to catch future issues, the reports are detailed and understandable. It has features that streamline manual work, improve our security and our protection in our IT infrastructure.

Pros:

I really like the platform, the data collection is ideal and the reports are detailed, it is the most appropriate SIEM service to monitor our IT infrastructure, it is an ideal software to take preventive measures, it is easy to customize the dashboards, the monitoring is constant and it gives us security in real time, the alerts are accurate and it helps us understand what is happening and fix it before it becomes serious.

Cons:

It is a somewhat expensive service but with more powerful features than other free SIEM systems, and it is a bit complex to set up and use for inexperienced users, so a lot of help should be sought from experienced staff and support team at first.

Ideal for root cause analysis

Pros:

The simplified user interface which presents logs in a readable format. Also it's ability to quickly identify integration issues

Cons:

A mechanism to hide system generated logs that are unimportant would be great

Splunk: A Monitoring Tool for all your needs

Comments: If i have put a word it would say "Fantastic". The functionalities Splunk provides eases team to manage/monitor their IT infrastructure and internal application you will be well aware about the performance of your applications. Setup alerting and take necessary actions in stipulated time to overcome all the issues which may affect your application performance.

Pros:

Splunk offers various features whether you need to setup monitoring on your server, application logs based on logs ingestion set alerts so that teams got notified on real time and take actions accordingly. In this way, it helps to monitor application which are mission critical. You can make dashboards in Splunk where you can configure various components such indexes, data inputs and schedule reports as well. To achieve additional functionalities we can install third party apps as well such as AWS Add on for cloud watch log ingestion.

Cons:

From Admin perspective, I found user access management a little difficult. The roles of access management becomes complicated because some time the config files for that didn't came very handy. Other then that I think all in all Splunk provides fulfill all of the requirements.

Splunk is a lifesaver!

Comments: It’s been wonderful. I was able to take most of my forwarded lambdas and charts them to watch duration and throughput. Notifications and alerts let me know if things are out of whack. Such a relief to know Splunk is watching my back!

Pros:

If you need real-time grokking into your infrastructure, look no further than Splunk. I love love love the dashboards. It’s easy to tell a story with your data, and the live search is so FAST!

Cons:

SPL is a little hard to get used to, but once you get the hang of it, it’s not so bad. I recommend downloading their community edition for some great examples of queries and dashboards.

One of the best monitoring solutions for different platform.

Pros:

Best tracking and data analysis tool which help to monitor and manage the server and system component in very effective way. Real time Visualization helps to take the quick decision so that desired action can be taken to avoid failure.Best data collection in the forms of log and which helps to define the best set of automation jobs to fix the issue.

Cons:

There are few components or observation like,1. most of the time observes the slowness in the performance.2. Sometime observe the delay in the issue or updated log reflection on the portal. 3. Need more storage to manage and maintain the lo g which impact organizational costing and budget.

Splunk Enterprise Review

Comments: Scanning for known and unknown vulnerabilities on network to detect and remediate threats.

Pros:

With Splunk Enterprise, it is easy to investigate, detect and remediate threats on devices and endpoints on our network.

Cons:

It was full of technical overheads when we were customizing Splunk Enterprise features.

Offers more than you think

Comments: We've used the software to detect layer 7 attacks, unearth issues we didn't realize were happening and gives us end to end insight into our stack.

Pros:

The system is highly intuitive to use. It is faster than other solutions I've used on the market and has a huge library of 3rd party plugins to get more from the system. It is easy to create scheduled searches, dashboards, reports etc. but there are a number of additional plugins (at an extra cost) to help with security, single pane of glass and metric collection.

Cons:

It offers challenges for a decentralized working model. Where Splunk is centrally managed, it is easy to ensure that best practices are maintained. Where the system is opened up for an entire department to utilize and on-board their logs, it becomes more difficult. However, with some creative thinking and good process, this issue can be overcome.

Splunk is a critical tool for monitoring and alerting

Comments: Splunk is a great product for enterprise monitoring and alerting.

Pros:

They have a robust platform that I have used for monitoring and analytics. There are a lot of options and customization available when using it.

Cons:

Because there is so much customization and options available, it can be complicated to learn.