About Splunk Enterprise

The Splunk Enterprise platform allows users to process and index most forms of data in their native format. It includes data indexing tools, which enable users to locate specific data across large data sets.

The software is designed to serve users with limited technical expertise. A key selling point is the platform's scalability, which allows it to grow with the amount of data it is needed to process; up to at least 100 terabytes per day. To ensure users always have access to their data, even in the event of a system disruption, this platform features built-in failover and disaster recovery capabilities.

Deployment options include both on-premise and SaaS (Software as a Service). Subscription pricing is based on the amount of data indexed per day, an...


Read More

Supported Operating System(s):

Mac OS, Linux, Web browser (OS agnostic), Windows 10

109 Reviews of Splunk Enterprise

Average User Ratings

Overall

4.60 / 5 stars

Ease-of-use

4.0

Value for money

4.0

Customer support

4.5

Functionality

4.5

Ratings Snapshot

5 stars

(70)

70

4 stars

(33)

33

3 stars

(7)

7

2 stars

(0)

0

1 stars

(0)

0

Likelihood to Recommend

Not likely

Very likely

Showing 1 - 5 of 109 results

February 2018

David from Paddy Power Betfair

Industry: Entertainment

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

5.0

Value for money

4.0

Customer support

4.0

Functionality

5.0

February 2018

Offers more than you think

We've used the software to detect layer 7 attacks, unearth issues we didn't realize were happening and gives us end to end insight into our stack.

Pros

The system is highly intuitive to use. It is faster than other solutions I've used on the market and has a huge library of 3rd party plugins to get more from the system. It is easy to create scheduled searches, dashboards, reports etc. but there are a number of additional plugins (at an extra cost) to help with security, single pane of glass and metric collection.

Cons

It offers challenges for a decentralized working model. Where Splunk is centrally managed, it is easy to ensure that best practices are maintained. Where the system is opened up for an entire department to utilize and on-board their logs, it becomes more difficult. However, with some creative thinking and good process, this issue can be overcome.

December 2019

Anonymous

Verified Reviewer

Company Size: 1,001-5,000 employees

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

4.0

Value for money

4.0

Customer support

5.0

Functionality

4.0

December 2019

Good enterprise system for security SIEM, monitoring and data aggregation and visualizations.

I've used Splunk for over 8 years and it is my go-to SIEM. There are tons of apps and integrations. Good for correlation and leveraging the Common Information Model will make your life much happier.

Pros

The power of it. It's a very good tool that does amazing things. Nothing comes close to it. We used it for full view of data, full transaction. Security appliance consolidation.

Cons

There is a learning curve and a new language you have to learn, but it's intuitive and you can pick it up pretty quickly.

Reasons for Choosing Splunk Enterprise

Better for security and user experience.

December 2019

Joe from GDMS

Company Size: 10,000+ employees

Industry: Defense & Space

Time Used: Less than 2 years

Review Source: Capterra


Ease-of-use

4.0

Value for money

5.0

Customer support

5.0

Functionality

5.0

December 2019

Splunk Enterprise

I'm continuously impressed by the quality of the software, and the depth of what it can accomplish. Worth every penny!

Pros

After going through the free online training I was able to get this product up and running to consume Linux audit logs. Writing SPL wasn't too difficult, at least for basic scenarios. The regular expression generator is especially helpful!

Cons

The configuration resides across many different levels (default, local, and then again within the apps). Having levels of configuration is a bit of a nightmare to manage.

Reasons for Choosing Splunk Enterprise

We heard many good things about it so we knew it would be successful.

November 2019

Anonymous

Verified Reviewer

Company Size: 10,000+ employees

Time Used: Less than 2 years

Review Source: Capterra


Ease-of-use

4.0

Value for money

5.0

Customer support

5.0

Functionality

5.0

November 2019

Everything on every point is under your control.

Splunk Enterpise is the best security information and event management tool ever. It allows you to see far most end point of your system, everything stays under control.

Pros

The fature of scrpint/coding your own app inside the Splunk is very useful. I developed a lot of dashboards for our infrastructure, customized alarms, email notfications helps you to see what is happening in the system. It definetely deserves the money our company have had paid.

Cons

When you have a real big infrastructure, Splunk user interface gets a bit slow. Waiting for search results a bit annoying.

Reasons for Choosing Splunk Enterprise

According to our market research, Splunk is the best option. Although Splunk is expensive, we realised that it deserves that amount.

May 2017

Patrick from Denver Water

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

4.0

Functionality

3.0

May 2017

Spunk Review

Pros

It allows me to bring a lot of information into one friendly view. It's a great security audit tool.

Cons

It has limited functionality. It is a very memory intensive system. It does not integrate with Lennox.