About Splunk Enterprise

The Splunk Enterprise platform allows users to process and index most forms of data in their native format. It includes data indexing tools, which enable users to locate specific data across large data sets.

The software is designed to serve users with limited technical expertise. A key selling point is the platform's scalability, which allows it to grow with the amount of data it is needed to process; up to at least 100 terabytes per day. To ensure users always have access to their data, even in the event of a system disruption, this platform features built-in failover and disaster recovery capabilities.

Deployment options include both on-premise and SaaS (Software as a Service). Subscription pricing is based on the amount of data indexed per day, an...


Read More

Supported Operating System(s):

Mac OS, Linux, Web browser (OS agnostic), Windows 10

119 Reviews of Splunk Enterprise

Average User Ratings

Overall

4.58 / 5 stars

Ease-of-use

4.0

Value for money

4.0

Customer support

4.5

Functionality

4.5

Ratings Snapshot

5 stars

(74)

74

4 stars

(38)

38

3 stars

(7)

7

2 stars

(0)

0

1 stars

(0)

0

Likelihood to Recommend

Not likely

Very likely

Showing 1 - 5 of 119 results

February 2018

David from Paddy Power Betfair

Verified Reviewer

Industry: Entertainment

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

5.0

Value for money

4.0

Customer support

4.0

Functionality

5.0

February 2018

Offers more than you think

We've used the software to detect layer 7 attacks, unearth issues we didn't realize were happening and gives us end to end insight into our stack.

Pros

The system is highly intuitive to use. It is faster than other solutions I've used on the market and has a huge library of 3rd party plugins to get more from the system. It is easy to create scheduled searches, dashboards, reports etc. but there are a number of additional plugins (at an extra cost) to help with security, single pane of glass and metric collection.

Cons

It offers challenges for a decentralized working model. Where Splunk is centrally managed, it is easy to ensure that best practices are maintained. Where the system is opened up for an entire department to utilize and on-board their logs, it becomes more difficult. However, with some creative thinking and good process, this issue can be overcome.

March 2020

Anonymous

Verified Reviewer

Company Size: 10,000+ employees

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

5.0

Value for money

5.0

Customer support

5.0

Functionality

4.0

March 2020

Splunk is a great solution for SIEM and also for monitoring your infrastructure

We needed a way to monitor our internal environment and start to be more proactive with issues, so we started sending all of our logs to Splunk and we we able to get insights we did not know we needed. It is a great solution and they are constantly innovating.

Pros

Splunk makes it easy to search through various data including logs. In the past I have had to pour through logs in order to find the one lines among the 100 of thousands of lines. Splunk allows me to search through those logs in a matter of seconds vs the hours it used to take.

Cons

Most of enterprise setup is done through the command line. It would be nice to have cluster configuration (index creation) as part of the UI.

Reasons for Choosing Splunk Enterprise

Spelunking was simple to setup and the customer service is great. It performed very well and proved to be a valuable assets to run in Production.

October 2020

Anonymous

Verified Reviewer

Company Size: 10,000+ employees

Time Used: Less than 12 months

Review Source: Capterra


Ease-of-use

3.0

Value for money

5.0

Customer support

5.0

Functionality

5.0

October 2020

A tool which is one for all

Splunk has made me realize the ability to correlate different data from different realms altogether and generate valuable insights.

Pros

The ability to use this software for security operations, data analysis, creating dashboards, generating tickets and everything else

Cons

Splunk uses its own SPL, which is not very easy to learn. However, there are lots of documentation that Splunk provides to its customers. There is paid training available which is useful for beginners to learn.

Reasons for Choosing Splunk Enterprise

Splunk has much more capabilities than IBM QRadar. The ability to automate things using Splunk is extraordinary which makes Splunk the market leader.

May 2017

Patrick from Denver Water

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

4.0

Functionality

3.0

May 2017

Spunk Review

Pros

It allows me to bring a lot of information into one friendly view. It's a great security audit tool.

Cons

It has limited functionality. It is a very memory intensive system. It does not integrate with Lennox.

September 2020

Divyang from Trueline Solutions

Verified Reviewer

Company Size: 201-500 employees

Industry: Information Technology and Services

Time Used: Less than 2 years

Review Source: Capterra


Ease-of-use

5.0

Value for money

2.0

Customer support

5.0

Functionality

5.0

September 2020

Manipulate You Data

Splunk is widely used for manipulation of data and we encounter the use of this tool almostl twice a week. Even though it costs much more but still we have not found any alternative that is able to offer all these functionalities.

Pros

Splunk is very easy to use due to high community support and many video tutorials available online for new users to learn. Functionalities are robust and simple to use. Data retrieval and visualisation is nice and easy if you know the right querying process. Machine Learning supports enhances performance for the cloud, especially. It collect wide variety of data and still it amaze you the way it retrievs it.

Cons

There are many tools available in market which are potential competitors of this tool and that too at reasonable pricing. Splunk offers more functionalities but costs you too much if you look at the work it does. Complex queries may require large CPU usage and may even freeze or atleast slow down the system for a while. Need to be specific while querying the data.