We monitor our airtight network traffic using the Splunk Enterprise Platform. We also use the solution for port monitoring, to monitor which ports are closed, which are open, and flapping if in any port. We use it to check our server performance to see if it gets choked because of high CPU or RAM utilization.
Splunk Enterprise
SplunkExternal reviews
447 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Easily Deployable SIEM Solution
What do you like best about the product?
Splunk Enterprise is one of the leading SIEM Solution in the industry and the main attraction of splunk is ease of use and implementation, we can easily connect as many devices we need to splunk by its agent that is splunk universal forwarder and after a small configuration it will share logs automatically in realtime.it is also very easy to analyse logs using splunk enterprise with its special queries known as splunk processing language.
What do you dislike about the product?
Splunk Enterprise is not affordable for individuals and it's free trial have a limitation of 500mb.
What problems is the product solving and how is that benefiting you?
As a security researcher and instructor it's my responsibility to develop skills in log analysis and blue teaming so splunk is the solution that I'm using to analyse my device logs and teach my students about log analysis.
Hi guys Don't go for Splunk Enterprise without Seeing this review
What do you like best about the product?
I like Collection indexing of splunk. When you investigate any alerts the response of the search is very quick and give consolidated indexed information
What do you dislike about the product?
Splunk language take time to learn and how to use SPL and how to create effective searches and dashboards also bit difficult
What problems is the product solving and how is that benefiting you?
Realtime threat detections , alert investigation and incident response. We use this to create user behaviour analytics dashboards
An easy-to-use and easy-to-configure solution that can be used to monitor network traffic
What is our primary use case?
What is most valuable?
Splunk Enterprise Platform is an easy-to-use and easy-to-configure solution.
What needs improvement?
There should be continuous customer engagement and training programs on the new features and capabilities introduced by the solution.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for four years.
What do I think about the stability of the solution?
I rate Splunk Enterprise Platform a nine out of ten for stability.
What do I think about the scalability of the solution?
Splunk Enterprise Platform is a scalable solution. Two people are using the solution in our organization to monitor data.
I rate Splunk Enterprise Platform ten out of ten for scalability.
How was the initial setup?
The solution’s initial setup is easy.
What about the implementation team?
One or two hours is enough to deploy the solution, but its configuration will take time, based on the users. Just one person is enough to deploy the solution.
What was our ROI?
We have seen a return on investment with Splunk Enterprise Platform for security and performance use cases.
What's my experience with pricing, setup cost, and licensing?
The solution’s pricing is moderate. We have to pay a yearly licensing fee for the solution, and there is an additional cost for support.
What other advice do I have?
Splunk Enterprise Platform is a good and easy-to-use solution. It has to be regularly upgraded to the changing network or customer needs.
Overall, I rate Splunk Enterprise Platform an eight out of ten.
Splunk, incredible big data platform
What do you like best about the product?
The searching abilities are increadbile, the log indexing and speed is pretty much unmatchable to other solutions
What do you dislike about the product?
Searching quiries can get complicted, does require extensive setup and maintance.
What problems is the product solving and how is that benefiting you?
SIEM thats able to solve alot of issues, including all security monitoring, notification and rules on specific keywords, or string of words, the alerts to help with all the activities on the network.
Best log analysis and monitoring tool
What do you like best about the product?
Splunk gives the flexibility to customize the logs to be indexed and also allows a lot of features to extract the log information. Splunk also provies the possibility to create dynamic dashboards with time series and tables with various templates.
Splunk also has the ability to create alerts and reports based on the logs analysis.
Splunk also has the ability to create alerts and reports based on the logs analysis.
What do you dislike about the product?
Splunk some times is very complicated to configure. If not configured rightly may impact the performance of the applications
What problems is the product solving and how is that benefiting you?
Splunk helps to monitor realtomy ecomm sales and application issues by analyzing logs
A customizable solution that can be used as a Security Incident and Event Management (SIEM) tool
What is our primary use case?
We use Splunk Enterprise Platform as a Security Incident and Event Management (SIEM) tool.
What is most valuable?
The most valuable feature of Splunk Enterprise Platform is that it's a customizable solution.
What needs improvement?
Splunk Enterprise Platform needs a bit of tuning, and it would be beneficial if it came with some prebuilt use cases.
Splunk Enterprise Platform should include more integrations with other security tools.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for six years.
What do I think about the stability of the solution?
I rate Splunk Enterprise Platform a nine out of ten for stability.
What do I think about the scalability of the solution?
I rate Splunk Enterprise Platform an eight to nine out of ten for scalability.
How are customer service and support?
The technical support team's initial response is too late.
I rate the solution's technical support a five or six out of ten.
How would you rate customer service and support?
Neutral
How was the initial setup?
The solution's initial setup is average and a little bit tricky. On a scale from one to ten, where one is difficult, and ten is easy, I rate Splunk Enterprise Platform a three out of ten for the ease of its initial setup.
What about the implementation team?
Splunk Enterprise Platform was deployed in a month in our organization.
What's my experience with pricing, setup cost, and licensing?
Splunk Enterprise Platform is an expensive solution.
On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing a nine out of ten.
What other advice do I have?
I am working with the latest version of Splunk Enterprise Platform. Splunk Enterprise Platform is deployed on-cloud in our organization.
I recommend that users not expect value from Splunk Enterprise Platform immediately. It might take time to set it up and get any value out of it.
Overall, I rate Splunk Enterprise Platform a nine out of ten.
Best Log Monitoring Tool
What do you like best about the product?
Indexing , correlations and user interfrace are the key feature of splunk and help us to get the logs. Its user friendly and offer free foundation training. easy to integrate with serviceNow to generate alerts for analysis
What do you dislike about the product?
getting data from glacier and processing time of the query
What problems is the product solving and how is that benefiting you?
building use case of security alert and helping us to with system logs and activities. I like feature of log analysis and simple search query
A solution that offers a good analytics part along with great integration capabilities with other applications
What is our primary use case?
My company uses Splunk Enterprise Platform for monitoring and user base filtering.
What is most valuable?
The most valuable feature of the solution is the analytics part. Integration with other applications is another valuable feature of Splunk Enterprise Platform.
What needs improvement?
Splunk Enterprise Platform is already a refined product, so I don't have any recommendations related to areas that need improvement.
The cost of Splunk Enterprise Platform is an area of concern where improvements can be made by bringing down the costs. Product-related, I don't have any feedback.
The support offered by Splunk Enterprise Platform has certain shortcomings that need improvement.
For how long have I used the solution?
I have been using Splunk Enterprise Platform for a few weeks since it was recently deployed in my company. I use the solution's latest version. My company operates as a service provider of the solution.
What do I think about the stability of the solution?
The product's stability is good. Stability-wise, I rate the solution a nine out of ten.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution a nine out of ten.
Around 5,000 people use the solution. Around 10 to 15 analysts use Splunk Enterprise Platform in my company.
The solution is used on a regular and daily basis in my company.
How are customer service and support?
I am moderately satisfied with the solution's technical support. I rate the technical support an eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
Splunk Enterprise Platform was easy to implement. I rate the product's implementation phase an eight out of ten, where one is difficult, and ten is easy.
The solution is deployed on an on-premises model.
The solution's deployment phase was carried out over a period of one or two months.
What's my experience with pricing, setup cost, and licensing?
I rate the product's pricing a ten on a scale of one to ten, where one is cheap, and ten is expensive. It is a very pricey tool.
What other advice do I have?
I would recommend the product to those who plan to use it, provided the pricing of the solution is brought down.
I rate the overall product an eight out of ten.
One of the best tools for Dashboards
What do you like best about the product?
We use Splunk to generate dashboards with quantitative graphs for various aspects which helps each of the teams to have more governance other aspects which need attention on.
The correlated data on the dashboards can also be used to deliver presentations to all stakeholders.
The correlated data on the dashboards can also be used to deliver presentations to all stakeholders.
What do you dislike about the product?
At times when we have complex integrations it takes a bit of time for Splunk to display the charts on the dashboard if Splunk comes up with a way to reduce the time taken to populate the data quickly it would be fantastic.
What problems is the product solving and how is that benefiting you?
Splunk is benefitting us in many ways :
Compliance Monitoring
Team Performance Monitoring
Dashboards for Auditing
Dashboards for Delivering Presentations
Correlated data to drive governance on aspects which need more focus
Compliance Monitoring
Team Performance Monitoring
Dashboards for Auditing
Dashboards for Delivering Presentations
Correlated data to drive governance on aspects which need more focus
A platform for monitoring storage, CPU, RAM, Windows logs, and Cisco network logs on large machines
What is our primary use case?
We have around 38 virtual machines, including the desktop. We have filled our gap network. Splunk Enterprise monitors all network layer traffic, starting with Cisco traffic port violations. We are monitoring Windows logs, CPU, RAM, and disk utilization in Windows.
What is most valuable?
Splunk Enterprise is a wireless enterprise application that can be customized based on training. We can add new machines, Spring Forwarders, and whatever else we need to complete the job.
What needs improvement?
We have an enterprise system that we can only use up to 70% capacity. We have no Internet access. To ensure our system runs optimally, we must configure specific rules, such as RAM, CPU, and space utilization alerts. Also, it is tough for us to reach out to Splunk. We have another software called Nessus, which can be used for vulnerability scans to improve and expand our vulnerability management capabilities. We can add a vulnerability management tool and back network traffic monitoring. This would allow us to add everything into a single platform since we currently use multiple applications for eight solutions.
For how long have I used the solution?
I have been using Splunk Enterprise Platform since 2020. We are using the latest version of the solution.
What do I think about the stability of the solution?
The product is stable.
What do I think about the scalability of the solution?
We have 43 users using this platform.
How was the initial setup?
The initial setup is easy. We manage the installation of Splunk Enterprise Platform. On the first installation day, there are extensive procedures from Splunk and Honeywell. They are explaining how to install the software using Honeywell automation. They have provided a lot of documentation, but it is incomplete. It takes them two days to complete the installation, and then they train us for another week.
What's my experience with pricing, setup cost, and licensing?
We are using 11GB per day. Since I did all the analysis to determine how much we are consuming, we are currently utilizing around 5GB out of 11 GB. Therefore, we can reduce our usage from 11GB/day to 5GB/day. We reached out to Splunk, and they confirmed that this is possible. They also mentioned that there are commercial benefits to signing a longer-term contract. We are currently working on reducing our usage from 11GB/day to 5GB/day.
What other advice do I have?
We have annual automation for our automated building and availability building. The maintenance is easy. We will do a vulnerability scan. Then, we need to ask someone from the Splunk team to confirm that upgrading to this version of Windows or applying monthly or weekly patches will not impact the Splunk application. It's not easy or feasible to reach out to Splunk directly. Splunk is an enterprise software platform that monitors storage, CPU, RAM, Windows logs, and Cisco network logs on large machine setups. I suggest Splunk to anyone with these needs. Overall, I rate the solution an eight out of ten.
showing 61 - 70