External reviews
External reviews are not included in the AWS star rating for the product.
Splunk Enterprise Security provides simplified threat management
What do you like best about the product?
Splunk Enterprise Security provides simplified threat management that facilitates quick threat detection and response and minimizes risk.
What do you dislike about the product?
Pricing gets a bit higher for large data volumes. The optimization of searches is more of an art than just science. Dashboard is a bit harsh as compared to tableau. It is continuously making attempts to replace it with open source alternatives.
What problems is the product solving and how is that benefiting you?
Splunk Enterprise Security is an analytic-driven SIEM solution that can combat threats with actionable intelligence and advanced analytics at scale. With the goal of perfecting your security operations and reducing risks, Splunk is the security platform that enables you to detect, investigate, and respond in real-time.
- Leave a Comment |
- Mark review as helpful
just imagine, you can do it with splunk!
What do you like best about the product?
SPL is one and only, whatever you can imagine, you can do it with SPL
What do you dislike about the product?
Data pipeline and conf files are still hard to understand if you have no enough knowledge.
What problems is the product solving and how is that benefiting you?
- Splunk gives you advanced visibility and correlation options with different data sources
- Statistical and ML approaches can be done so easily and with no coding.
- advanced dashboarding within a minute
- Splunk has the ability to do advanced threat hunting for security
- Statistical and ML approaches can be done so easily and with no coding.
- advanced dashboarding within a minute
- Splunk has the ability to do advanced threat hunting for security
Recommendations to others considering the product:
haven't started statistics and ML, and you don't know python as well. this is the best place to start.
game changer for log management system.
game changer for log management system.
Splunk Review
What do you like best about the product?
Splunk is the most capable SIEM tool out there. Its query language SPL is very efficient and it returns the result very fast.
It takes less time than any other SIEM tool I have used, to return the result of the query.
Also, its capability to use and define a statistical model in rule is another feature that I like most.
It takes less time than any other SIEM tool I have used, to return the result of the query.
Also, its capability to use and define a statistical model in rule is another feature that I like most.
What do you dislike about the product?
Its UI is not as rich as it should be due to which it takes time to onboard new Analysts into Splunk as they need more time to get familiar with SPL query language.
Also its little bit expensive and small organizations might not afford it.
Also its little bit expensive and small organizations might not afford it.
What problems is the product solving and how is that benefiting you?
Real-time threat detection, alert generation, analysis, and investigation.
Log management and retention.
Historical co-relation of security events.
Data Analysis and visulation.
Log management and retention.
Historical co-relation of security events.
Data Analysis and visulation.
Splunk review with trend Micro Vision One(XDR)
What do you like best about the product?
Very in-depth and informative. dashboards are easy to read and understand
What do you dislike about the product?
No dislikes so far. it has been everything we were looking for in log aggregation
What problems is the product solving and how is that benefiting you?
Which machines may have been compromised or any changes been made
Splunk Enterprise
What do you like best about the product?
Leading industry monitoring tool for performance,data analysis,data integration , Application sensors, custom application.
Virtual machines , hyper version and for cloud services.
Virtual machines , hyper version and for cloud services.
What do you dislike about the product?
Worth using it and everything is upto the expectations.
Good to have product for IT industry
Need little UI improvements and on-time patches.
Apart from these no Dislikes.
Good to have product for IT industry
Need little UI improvements and on-time patches.
Apart from these no Dislikes.
What problems is the product solving and how is that benefiting you?
Application monitoring, Security logs, daily logs and weekly logs.
Data Virtulization and analysis.
Servers ,VMs and data center security logs.
It can be used for multiple vendor platform.
Data Virtulization and analysis.
Servers ,VMs and data center security logs.
It can be used for multiple vendor platform.
only platform for data to do anything
What do you like best about the product?
Only platform to bring any data in any format without caring about structure of data and ability to do anything with it
What do you dislike about the product?
Splunk TA for stream still have known issues with reoccur again and again
What problems is the product solving and how is that benefiting you?
We are bringing data in from iot sensors and bringing security posture for stakeholders
Best for analyzing business data for gathering meaningful information
What do you like best about the product?
We can use Artificial intelligence and Machine learning capabilities using Splunk Enterprise and optimize the way of doing business. Also, Splunk Enterprise is used for alerting in case of any failover or space issue in servers.
What do you dislike about the product?
I do not see anything which I dislike about Splunk. However, we can have to alert and fix automation within Splunk itself. This would ultimately minimize the turnaround time to act on issues.
What problems is the product solving and how is that benefiting you?
Splunk minimizes manual human efforts to monitor system performance and issues. Hence, it is beneficial, and data analytics cost is reduced phenomenally. Splunk Enterprise has machine learning capabilities to act based on past actions.
So Easy To Find Relevant Logs
What do you like best about the product?
Love the filter capability for logs and possibility of complex logic filters
Speed of response for search is pretty great even with days worth of logs
Graph generation ability is a life saver for performance feedback and recurring issues
Speed of response for search is pretty great even with days worth of logs
Graph generation ability is a life saver for performance feedback and recurring issues
What do you dislike about the product?
Complicated to get started on for a new user
Would have appreciated more UI features to get results than having to do filter manually
The response could have been more easy to read for non tech users
Would have appreciated more UI features to get results than having to do filter manually
The response could have been more easy to read for non tech users
What problems is the product solving and how is that benefiting you?
Filtering through weeks of log to find issues with the software
Looking for recurring issues and time of issues historically
Finding performance bottlenecks using the graphs
Looking for recurring issues and time of issues historically
Finding performance bottlenecks using the graphs
Splunk Enterprise - Review
What do you like best about the product?
Architecture, Implementation, Ease of use, features, support and user interface
What do you dislike about the product?
I dislike the most pricing since it is a very expensive product. Also, the trainings and certifications related to the product are expensive as well.
What problems is the product solving and how is that benefiting you?
I'm solving plethora of problems using Splunk as listed below :
1. Security monitoring using log collection
2. Compliane monitoring using log collection
3. Data analytics using log collection
4. Threat intelligence correlation
5. Graphical visualisation using data collected
1. Security monitoring using log collection
2. Compliane monitoring using log collection
3. Data analytics using log collection
4. Threat intelligence correlation
5. Graphical visualisation using data collected
SPLUNK - Security Analyst Review
What do you like best about the product?
SPLUNK - I have been using this tool for quite a long time now, and it has been excellent. My current organization uses it for security logs analysis in which I feel is the best tool that anyone can use with all the quality segregated data that it provides and the in-depth log analysis. One can make a dashboard that can be easier to understand data. Can create automated alerts and reports based on the logs received. It helps in lots of things.
What do you dislike about the product?
It does take a toll on the host machine on which it is running, so beware of the type of host you are using.
Familiarity with XML is necessary to create some great dashboard reports for clients.
Familiarity with XML is necessary to create some great dashboard reports for clients.
What problems is the product solving and how is that benefiting you?
1. Security analysis based on the logs
2. Alerts for unwanted events
3. Having logs from all the sources in one place.
4. An easier understanding of logs that are not readable to normal humans.
2. Alerts for unwanted events
3. Having logs from all the sources in one place.
4. An easier understanding of logs that are not readable to normal humans.
Recommendations to others considering the product:
Just go for it if you are looking for a SIEM tool.
showing 41 - 50