Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Easily Deployable SIEM Solution
What do you like best about the product?
Splunk Enterprise is one of the leading SIEM Solution in the industry and the main attraction of splunk is ease of use and implementation, we can easily connect as many devices we need to splunk by its agent that is splunk universal forwarder and after a small configuration it will share logs automatically in realtime.it is also very easy to analyse logs using splunk enterprise with its special queries known as splunk processing language.
What do you dislike about the product?
Splunk Enterprise is not affordable for individuals and it's free trial have a limitation of 500mb.
What problems is the product solving and how is that benefiting you?
As a security researcher and instructor it's my responsibility to develop skills in log analysis and blue teaming so splunk is the solution that I'm using to analyse my device logs and teach my students about log analysis.
- Leave a Comment |
- Mark review as helpful
Hi guys Don't go for Splunk Enterprise without Seeing this review
What do you like best about the product?
I like Collection indexing of splunk. When you investigate any alerts the response of the search is very quick and give consolidated indexed information
What do you dislike about the product?
Splunk language take time to learn and how to use SPL and how to create effective searches and dashboards also bit difficult
What problems is the product solving and how is that benefiting you?
Realtime threat detections , alert investigation and incident response. We use this to create user behaviour analytics dashboards
Splunk, incredible big data platform
What do you like best about the product?
The searching abilities are increadbile, the log indexing and speed is pretty much unmatchable to other solutions
What do you dislike about the product?
Searching quiries can get complicted, does require extensive setup and maintance.
What problems is the product solving and how is that benefiting you?
SIEM thats able to solve alot of issues, including all security monitoring, notification and rules on specific keywords, or string of words, the alerts to help with all the activities on the network.
Best log analysis and monitoring tool
What do you like best about the product?
Splunk gives the flexibility to customize the logs to be indexed and also allows a lot of features to extract the log information. Splunk also provies the possibility to create dynamic dashboards with time series and tables with various templates.
Splunk also has the ability to create alerts and reports based on the logs analysis.
Splunk also has the ability to create alerts and reports based on the logs analysis.
What do you dislike about the product?
Splunk some times is very complicated to configure. If not configured rightly may impact the performance of the applications
What problems is the product solving and how is that benefiting you?
Splunk helps to monitor realtomy ecomm sales and application issues by analyzing logs
Best Log Monitoring Tool
What do you like best about the product?
Indexing , correlations and user interfrace are the key feature of splunk and help us to get the logs. Its user friendly and offer free foundation training. easy to integrate with serviceNow to generate alerts for analysis
What do you dislike about the product?
getting data from glacier and processing time of the query
What problems is the product solving and how is that benefiting you?
building use case of security alert and helping us to with system logs and activities. I like feature of log analysis and simple search query
One of the best tools for Dashboards
What do you like best about the product?
We use Splunk to generate dashboards with quantitative graphs for various aspects which helps each of the teams to have more governance other aspects which need attention on.
The correlated data on the dashboards can also be used to deliver presentations to all stakeholders.
The correlated data on the dashboards can also be used to deliver presentations to all stakeholders.
What do you dislike about the product?
At times when we have complex integrations it takes a bit of time for Splunk to display the charts on the dashboard if Splunk comes up with a way to reduce the time taken to populate the data quickly it would be fantastic.
What problems is the product solving and how is that benefiting you?
Splunk is benefitting us in many ways :
Compliance Monitoring
Team Performance Monitoring
Dashboards for Auditing
Dashboards for Delivering Presentations
Correlated data to drive governance on aspects which need more focus
Compliance Monitoring
Team Performance Monitoring
Dashboards for Auditing
Dashboards for Delivering Presentations
Correlated data to drive governance on aspects which need more focus
Splunk very useful for log monitoring
What do you like best about the product?
Easy to install and manage Splunk. Non technical person can also use Splunk.
What do you dislike about the product?
Number of nodes in cluster increase as data increases
What problems is the product solving and how is that benefiting you?
Data visualisation and log filtering
Great platform to create dashboard,monitor, analyze big data
What do you like best about the product?
It makes it easy to analyze and search large amount of data especially logs from different applications and the best thing about this tool is that we can create graphs and charts based on the number of errors and number of messages to show it to dev team or higher management
What do you dislike about the product?
I accept it has many best features but in the real time applications generates huge log data hence splunk charges more as more data comes in. And it is challenging for some people to understand all the features and usage of them. It takes more time process as there is huge data in its containers
What problems is the product solving and how is that benefiting you?
Usually searching for some part of data in the huge big data is not easy but we can do that in the splunk containers. Also monitoring the data is easy. Splunk can be integrated with ETL and ESB tools very easily. And it takes care of the report generation based on the log data
Splunk drain for logging and alert
What do you like best about the product?
We can use splunk to store the log and refer in later time and also we can trigger alert when something goes wrong in our application.
What do you dislike about the product?
Need more flexibility in alert trigger and the trigger should not be a timed it should be trigger the alert on the instance of getting the keyword
What problems is the product solving and how is that benefiting you?
Usually logs on pcf will be deleted in 2 hours so we can't see after some time so we used splunk drain to collect and trigger alert if something goes off line which increases the predictability and manageability ad the application
Great tool for log aggregator and searching
What do you like best about the product?
Splunk provides great features for log aggregator, searching , you can monitor things like your infrastructure, can create different dash boards for your infra, application and many more ! You can also use/configure Splunk as a SIEM ( Security information and Event Managemnt) that helps organization detect, analyze, and respond to security threats before they harm to the business/application.
What do you dislike about the product?
Defintley Splunk is a not a very sheap solution and bit expensive. Learning curve is also there, you need to underdstand the architecture and terminology, should be goof as SPL ( search processing language) to query from the logs.
What problems is the product solving and how is that benefiting you?
We use typically for our Infrastructure monitoring, creating various dash boards for our application, Alerts generation,Infra availability, log aggregration and many more..
showing 21 - 30