Splunk Enterprise
SplunkExternal reviews
448 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Splunk Enterprise is great data and log management solution for information security engineers.
What do you like best about the product?
Splunk have quick search and detection .
What do you dislike about the product?
Splunk can reduce memory and CPU usage .
What problems is the product solving and how is that benefiting you?
I can detect malicious behavior on Windows Servers.
Very powerful tool
What do you like best about the product?
Splunk Enterprise is incredibly powerful and useful. It can be used for many applications, can be customized for lots of use cases and has enough features to be used by many people in the org.
What do you dislike about the product?
Getting started can be somewhat tricky due to the query language and figuring out what the best set up is for your organization specifically. Sometimes speed is also less than ideal.
What problems is the product solving and how is that benefiting you?
Monitoring a wide variety of logs
Splunk Enterprise: - Boss of Siem Solution
What do you like best about the product?
Splunk provides a detailed overview of notable events, web intelligence to prove web traffic in our network, automates event response, recommends proper remediation for alerts, and risk assessment with the help of risk score.
What do you dislike about the product?
All the functionalities are well designed, and SLA needs to improve some audit-compliance reporting parts to help remediation teams to remediate it properly. And also Licensing Costs.
What problems is the product solving and how is that benefiting you?
Incident management, log management, and Real-time threat detection for securing our environment from the cyber attack may cause a considerable business loss if it happens.
Splunk - extraordinary for validation
What do you like best about the product?
Splunk platform provides great insights on the back end calls and events that takes place when an application is submitted. The best part of Splunk is it has customization to various events.
What do you dislike about the product?
At times the values corresponding to the query does not reflect, this may be due to some Splunk platform being down. But it occurs at times and that could be resolved.
What problems is the product solving and how is that benefiting you?
Splunk is widely used for event validation. The ultimate feature is we can get events from even days before that is really helpful. Also Splunk has the capacity to load multiple events at same trigger time.
Searching tool- Splunk
What do you like best about the product?
The Splunk tool is one of the most helpful tool for creating customise searching of big data from different system with correct logging and responses. Splunk is very efficient searching tool with different visualisation.
What do you dislike about the product?
I don't see any drawback expect the point that for some system is it able to display data for only 3 months or few months data. Apart from this cost is something which I would consider goes higer if we are accessing large data.
What problems is the product solving and how is that benefiting you?
I have been allocated to a insurance project Where I need to see the session with request and responses. Splunk help me see that data and error logged from any system as per the date range .
Splunk Enterprises
What do you like best about the product?
Fetching data & creating visualisation both in one application.
What do you dislike about the product?
There is nothing i dislike about splunk Enterprise
What problems is the product solving and how is that benefiting you?
We can fetch data from database using commands & create visualisation of the data extract with only one line code.
With splunk enterprise we quickly detect the drawbacks
What do you like best about the product?
It has an alert system that warns us in real time of any vulnerability in the system, any funnel or any error and in this way we can solve it quickly. It also allows the easy creation of custom work panels and customize the platform interface to work and have at hand, the tools we use the most.
What do you dislike about the product?
It can have a high learning curve, even for educated employees, so time is required for training. I wish that some basic functions could work without the need for internet access, no doubt my work would be faster. From the installation of the software to its use, it is a long process, because to configure it is confusing and sometimes we need the help of technical staff.
What problems is the product solving and how is that benefiting you?
This is one of the best programs we have used for monitoring data from our computers and applications, getting to know in real time the problems that may arise and thanks to its alerts and notifications, to solve the problem. I love that we can easily monitor application data, as well as know the performance of each one. It is simply a great tool.
Sophos Integration with Splunk
What do you like best about the product?
Splunk is easy to integrate with all other applications through agent and heavy forwarder.
What do you dislike about the product?
Need to build so many use cases for building so alerts.
What problems is the product solving and how is that benefiting you?
Monitor the environment from soc end and mail notification with alerts. It solved our manual monitoring.
Splunk Enterprise integration for SOPHOS
What do you like best about the product?
it is easy to integrate between splunk and Sophos threat Management system.
What do you dislike about the product?
Some queries for test cases should be there to help the implementation team.
What problems is the product solving and how is that benefiting you?
We are getting all the events in our splunk and we are able to take necessary action in SOC.
Best Application for monitoring and analysis.
What do you like best about the product?
It's been quite some time since I started using Splunk and I must say it's really easy and convenient to use and clearly does its job. My company uses Splunk for log analysis and as per my experience, it's easy to get knowledge on most of the features. No hard training is required. Creating a dashboard requires some deep knowledge but once created it will be easier to understand logs. It is a really helpful tool for security analysis.
What do you dislike about the product?
Nothing much but yes, it is costly and it requires high memory uses from the system it's running on. Just because of this it is not preferred in small organizations.
What problems is the product solving and how is that benefiting you?
A clear understanding of Raw logs which are unreadable and then the major use is for security analysis based on alerts created. Monitoring and analysis are quite easy based on search strings in logs.
showing 71 - 80