Splunk Enterpriseのレビュー

Big data is no problem for Splunk Enterprise

製品を使ってみた感想： Splunk is a powerful and useful monitoring tool. Splunk's efficiency is enhanced by the ability to integrate third-party apps developed in-house. It's also interesting that we can incorporate a customs alert and dashboard. In most situations, it resolves the need to normalize data, allowing for the use of any and all data in business forecasting. It is analyzed for data that can be utilized to optimize spending plans and asset tracking.

良いポイント:

Without worrying too much about data type or normalization, Splunk Enterprise can efficiently manage massive amounts of data from numerous sources. Data may be accessed in a flash, and there are a number of options for tailoring and integrating data analysis workflows to create bespoke dashboards or utilizing apps from our other product partners.

改善してほしい点:

There isn't much I dislike about splunk, however if we have to be picky, it would be that it's more difficult to maintain as an administrator when splunk is installed on outdated architecture.

Splunk Enterprise is not just a tracing tool

製品を使ってみた感想： My overall experience with Splunk Enterprise is really good. It is a powerfull tool to help you to tracing calls, using filters and customizable indexes.

良いポイント:

Intuitive, customizable and really usefull in everyday work. The different section "smart, quick and detailed" gives you the freedom to choice how to interact with the tool.

改善してほしい点:

Some bugs on the Alerts section to edit makes the experience worse than I expect.

Powerful tool to perform db queries

製品を使ってみた感想： I used Splunk to surface and review platform logs

良いポイント:

Possibility to export query results in a variety of formats.

改善してほしい点:

User interface is not intuitive and it requires a steep learning curve

Splunk Enterprise is my go-to for analyzing large volumes of data quickly and effectively.

良いポイント:

The software is user-friendly and has powerful data visualization tools.

改善してほしい点:

I wish the pricing was more affordable for small businesses like mine, and some features can be overwhelming for beginners.

Great SIEM

良いポイント:

Incredibly powerful tool for log collection. It is very scalable and can be integrated with a wide variety of other tools and platforms. It is well-documented and supported by a large user community, making it easier to find solutions to common challenges.

改善してほしい点:

It feels somewhat dated compared to newer solutions on the market. Its interface and some functionalities haven't evolved as much as other modern tools. It can also be quite expensive.

Splunk review

製品を使ってみた感想： I am using this tools since long time and overall it’s good tool.

良いポイント:

Capabilities and features of the tools provided are useful

改善してほしい点:

This is one of the costly tools Available in the market

Splunk is a great data management tool

製品を使ってみた感想： I use it daily to locate information on users and devices.

良いポイント:

The ability to parse data and locate critical information is unparalleled

改善してほしい点:

Search tools could be a little more user friendly.

Bettering Cybersecurity With Splunk Enterprise

良いポイント:

It has amazing firewall protection features It makes handling security monitoring and improving networks security easy log monitoring is easy

改善してほしい点:

No regrets as Splunk Enterprise meets needs.

Splunk, a must try for all data management persons

良いポイント:

1. Excellent ML background 2. Dashboard looks classy 3. Multiple external entries possible unlike a lot other tools

改善してほしい点:

1. Very limited variations in reporting 2. Real-time model is not great 3. Not mobile friendly

Splunk-review

製品を使ってみた感想： Excellent product, easy to integrate and use together with other products.

良いポイント:

The way it can be integrated to collate all required information at one place

改善してほしい点:

I have not see any least things so far in the usecases

Best Siem solution in market.

製品を使ってみた感想： Overall experience is amazing, we are happy with this software as it can ingest any form of data and generate alerts quite swiftly.

良いポイント:

Easy to install agents on servers, it can parse any form of data easily, Splunk can detect anomalies quite easily and the UBEA feature is amazing.

改善してほしい点:

The cost of this solution is high, and customer service is bad. Apart from that Splunk SPL language is difficult to learn.

The most expensive tool, requiring highly-skilled employees, capable of limitless value

製品を使ってみた感想： Splunk's SPL is a flexible, straight forward query-language with aspects of SQL, R, Python, and Bash. The fact that an analyst can learn to be an engineer through using the platform provides ease of growth. It is unmatched in its automation to make data actionable, while providing reporting and visualization capabilities.

良いポイント:

Splunk is provides a single tool for log aggregation, log analysis, and visualizations. Threat hunting, applying threat intelligence, and incident response are easily repeatable; pushing organizations to proactive security processes.

改善してほしい点:

Splunk is expensive, especially when an organizations is exploring and building new security or data use cases. It also requires a lot of engineering maintenance, making the quality of the data highly-dependent on the skill(s) of those supporting it. Many organizations do not maximize its benefit because it is poorly managed or supported by low-skilled employees.

Swiss Knife for everything about logs

良いポイント:

The product has a ton of Features. Everything what you Need when working with logs is already implemented

改善してほしい点:

Due to the rich set of capabilities regarding, searching, transforming and vizualzing data it‘s sometimes quite tricky to find all necessary query commands

Best SIEM out there.

良いポイント:

I used a lot of SIEMs in my career, Splunk is the best one out there. Comfortable, Easy to use, Great big data platform.

改善してほしい点:

Easy to use, versatile, A lot of options, dashboards

Perfect solution to handle big data

良いポイント:

I love its versatility to handle different kinds of data. While monitoring our internal data, Splunk Enterprise saved a lot of code with its real-time data monitoring and logs analysis feature.

改善してほしい点:

With the growth of the data, costs grew intensively which was out of the budget for our startup company. Initially setting up Splunk was complex as we were new to this.

Powerhouse in data management and analysis

製品を使ってみた感想： A complex but rewarding journey of data exploration and anomaly detection.

良いポイント:

Powerful and versatile data mining tool with excellent integration capabilities.

改善してほしい点:

Challenging initial setup and learning curve, particularly with query language and high cost.

log Master

製品を使ってみた感想： Overall i'm happy to use for any malicious activity is happened in the forwarder system its giving immediate alert system

良いポイント:

It's giving live alert, triggers, dashboard system based on rules we already set. the dashboard helps to see and virtualize the data.

改善してほしい点:

The only concern I feel it consumes the system space due to this my system running slow. without knowledge of Splunk query language, it is difficult to handle.

Powerful SIEM system that meets our expectations.

製品を使ってみた感想： We are using Splunk Enterprise for log correlation, the analytics are accurate and it catches errors right away which improves our internal capabilities, it is a special service that collects data from different data sources very accurately to catch future issues, the reports are detailed and understandable. It has features that streamline manual work, improve our security and our protection in our IT infrastructure.

良いポイント:

I really like the platform, the data collection is ideal and the reports are detailed, it is the most appropriate SIEM service to monitor our IT infrastructure, it is an ideal software to take preventive measures, it is easy to customize the dashboards, the monitoring is constant and it gives us security in real time, the alerts are accurate and it helps us understand what is happening and fix it before it becomes serious.

改善してほしい点:

It is a somewhat expensive service but with more powerful features than other free SIEM systems, and it is a bit complex to set up and use for inexperienced users, so a lot of help should be sought from experienced staff and support team at first.

Ideal for root cause analysis

良いポイント:

The simplified user interface which presents logs in a readable format. Also it's ability to quickly identify integration issues

改善してほしい点:

A mechanism to hide system generated logs that are unimportant would be great

Splunk: A Monitoring Tool for all your needs

製品を使ってみた感想： If i have put a word it would say "Fantastic". The functionalities Splunk provides eases team to manage/monitor their IT infrastructure and internal application you will be well aware about the performance of your applications. Setup alerting and take necessary actions in stipulated time to overcome all the issues which may affect your application performance.

良いポイント:

Splunk offers various features whether you need to setup monitoring on your server, application logs based on logs ingestion set alerts so that teams got notified on real time and take actions accordingly. In this way, it helps to monitor application which are mission critical. You can make dashboards in Splunk where you can configure various components such indexes, data inputs and schedule reports as well. To achieve additional functionalities we can install third party apps as well such as AWS Add on for cloud watch log ingestion.

改善してほしい点:

From Admin perspective, I found user access management a little difficult. The roles of access management becomes complicated because some time the config files for that didn't came very handy. Other then that I think all in all Splunk provides fulfill all of the requirements.

Splunk is a lifesaver!

製品を使ってみた感想： It’s been wonderful. I was able to take most of my forwarded lambdas and charts them to watch duration and throughput. Notifications and alerts let me know if things are out of whack. Such a relief to know Splunk is watching my back!

良いポイント:

If you need real-time grokking into your infrastructure, look no further than Splunk. I love love love the dashboards. It’s easy to tell a story with your data, and the live search is so FAST!

改善してほしい点:

SPL is a little hard to get used to, but once you get the hang of it, it’s not so bad. I recommend downloading their community edition for some great examples of queries and dashboards.

One of the best monitoring solutions for different platform.

良いポイント:

Best tracking and data analysis tool which help to monitor and manage the server and system component in very effective way. Real time Visualization helps to take the quick decision so that desired action can be taken to avoid failure.Best data collection in the forms of log and which helps to define the best set of automation jobs to fix the issue.

改善してほしい点:

There are few components or observation like,1. most of the time observes the slowness in the performance.2. Sometime observe the delay in the issue or updated log reflection on the portal. 3. Need more storage to manage and maintain the lo g which impact organizational costing and budget.

Splunk Enterprise Review

製品を使ってみた感想： Scanning for known and unknown vulnerabilities on network to detect and remediate threats.

良いポイント:

With Splunk Enterprise, it is easy to investigate, detect and remediate threats on devices and endpoints on our network.

改善してほしい点:

It was full of technical overheads when we were customizing Splunk Enterprise features.

Offers more than you think

製品を使ってみた感想： We've used the software to detect layer 7 attacks, unearth issues we didn't realize were happening and gives us end to end insight into our stack.

良いポイント:

The system is highly intuitive to use. It is faster than other solutions I've used on the market and has a huge library of 3rd party plugins to get more from the system. It is easy to create scheduled searches, dashboards, reports etc. but there are a number of additional plugins (at an extra cost) to help with security, single pane of glass and metric collection.

改善してほしい点:

It offers challenges for a decentralized working model. Where Splunk is centrally managed, it is easy to ensure that best practices are maintained. Where the system is opened up for an entire department to utilize and on-board their logs, it becomes more difficult. However, with some creative thinking and good process, this issue can be overcome.

Splunk is a critical tool for monitoring and alerting

製品を使ってみた感想： Splunk is a great product for enterprise monitoring and alerting.

良いポイント:

They have a robust platform that I have used for monitoring and analytics. There are a lot of options and customization available when using it.

改善してほしい点:

Because there is so much customization and options available, it can be complicated to learn.