Splunk Enterprise
SplunkExternal reviews
444 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Integration with Zscaler
What do you like best about the product?
GUI is very easy to understand and configure.
It will not take more than 5mins to integrate with zscaler.
We can export the logs in pdf format which is very easy to read.
It will not take more than 5mins to integrate with zscaler.
We can export the logs in pdf format which is very easy to read.
What do you dislike about the product?
Applying filters to search the logs because it is very difficult to apply the correct filter. Need some document for filters.
What problems is the product solving and how is that benefiting you?
In zscaler we can not check live logs without SIEM. So we integrated Splunk with Zscaler and that resolved our issue.
Splunk is the tool to make sense of data
What do you like best about the product?
Versatility and flexibility, a vast range of add-ons, great community and support, various options for different budgets, good integration options with various tools and vendors.
What do you dislike about the product?
Splunk is not easy to start up with and it requires good Linux and Systems skills. A very steep learning curve should be anticipated. Deployment automation can be hard or not possible at all.
What problems is the product solving and how is that benefiting you?
We use Splunk for multiple purposes: data aggregation from variuos log and stream sources, correlation and analysis, reporting and alerting. Splunk's strongest suit is to ingest unstructured data and convert it to structured, thus providing us the sense of data.
Splunk
What do you like best about the product?
Splunk is the most effective but expensive tool for cybersecurity analysis
What do you dislike about the product?
The one factor that I dislike in splunk is the pricing for the licence
What problems is the product solving and how is that benefiting you?
It helps to identify the real time threats in the current world and alerts so that we could mitigate the issue quickly
Splunk Enterprise Security provides simplified threat management
What do you like best about the product?
Splunk Enterprise Security provides simplified threat management that facilitates quick threat detection and response and minimizes risk.
What do you dislike about the product?
Pricing gets a bit higher for large data volumes. The optimization of searches is more of an art than just science. Dashboard is a bit harsh as compared to tableau. It is continuously making attempts to replace it with open source alternatives.
What problems is the product solving and how is that benefiting you?
Splunk Enterprise Security is an analytic-driven SIEM solution that can combat threats with actionable intelligence and advanced analytics at scale. With the goal of perfecting your security operations and reducing risks, Splunk is the security platform that enables you to detect, investigate, and respond in real-time.
just imagine, you can do it with splunk!
What do you like best about the product?
SPL is one and only, whatever you can imagine, you can do it with SPL
What do you dislike about the product?
Data pipeline and conf files are still hard to understand if you have no enough knowledge.
What problems is the product solving and how is that benefiting you?
- Splunk gives you advanced visibility and correlation options with different data sources
- Statistical and ML approaches can be done so easily and with no coding.
- advanced dashboarding within a minute
- Splunk has the ability to do advanced threat hunting for security
- Statistical and ML approaches can be done so easily and with no coding.
- advanced dashboarding within a minute
- Splunk has the ability to do advanced threat hunting for security
Recommendations to others considering the product:
haven't started statistics and ML, and you don't know python as well. this is the best place to start.
game changer for log management system.
game changer for log management system.
Splunk Review
What do you like best about the product?
Splunk is the most capable SIEM tool out there. Its query language SPL is very efficient and it returns the result very fast.
It takes less time than any other SIEM tool I have used, to return the result of the query.
Also, its capability to use and define a statistical model in rule is another feature that I like most.
It takes less time than any other SIEM tool I have used, to return the result of the query.
Also, its capability to use and define a statistical model in rule is another feature that I like most.
What do you dislike about the product?
Its UI is not as rich as it should be due to which it takes time to onboard new Analysts into Splunk as they need more time to get familiar with SPL query language.
Also its little bit expensive and small organizations might not afford it.
Also its little bit expensive and small organizations might not afford it.
What problems is the product solving and how is that benefiting you?
Real-time threat detection, alert generation, analysis, and investigation.
Log management and retention.
Historical co-relation of security events.
Data Analysis and visulation.
Log management and retention.
Historical co-relation of security events.
Data Analysis and visulation.
Splunk review with trend Micro Vision One(XDR)
What do you like best about the product?
Very in-depth and informative. dashboards are easy to read and understand
What do you dislike about the product?
No dislikes so far. it has been everything we were looking for in log aggregation
What problems is the product solving and how is that benefiting you?
Which machines may have been compromised or any changes been made
Splunk Enterprise
What do you like best about the product?
Leading industry monitoring tool for performance, data analysis, data integration, application sensors, and custom applications. Virtual machines, hypervisor, and for cloud services.
What do you dislike about the product?
Worth using it and everything is up to the expectations. Good to have product for IT industry. Need little UI improvements and on-time patches. Apart from these, no dislikes.
What problems is the product solving and how is that benefiting you?
Application monitoring, security logs, daily logs, and weekly logs. Data virtualization and analysis. Servers, VMs, and data center security logs. It can be used for multiple vendor platforms.
only platform for data to do anything
What do you like best about the product?
Only platform to bring any data in any format without caring about structure of data and ability to do anything with it
What do you dislike about the product?
Splunk TA for stream still have known issues with reoccur again and again
What problems is the product solving and how is that benefiting you?
We are bringing data in from iot sensors and bringing security posture for stakeholders
Best for analyzing business data for gathering meaningful information
What do you like best about the product?
We can use Artificial intelligence and Machine learning capabilities using Splunk Enterprise and optimize the way of doing business. Also, Splunk Enterprise is used for alerting in case of any failover or space issue in servers.
What do you dislike about the product?
I do not see anything which I dislike about Splunk. However, we can have to alert and fix automation within Splunk itself. This would ultimately minimize the turnaround time to act on issues.
What problems is the product solving and how is that benefiting you?
Splunk minimizes manual human efforts to monitor system performance and issues. Hence, it is beneficial, and data analytics cost is reduced phenomenally. Splunk Enterprise has machine learning capabilities to act based on past actions.
showing 41 - 50