Splunk Review

The search function for splunk is like a google search, you just enter and it will quickly show you the results


What is our primary use case?

Our primary use case of this solution is as a centralized lab collection.

What is most valuable?

The search function for splunk is like a google search. You just enter and it will quickly show you the results. 

What needs improvement?

Splunk has different plugins but by default, the logs are not organized, it shows that there are roll-ups that are out of the box. I saw many plugins that can help improve or extend Splunk's functionality but I haven't tried many of them.

It would be best if they can incorporate all security locks with minimal incidents. 

For how long have I used the solution?

One to three years.

What do I think about the scalability of the solution?

It's a little hard to scale on-prem. 

How was the initial setup?

The initial setup was easy. It took us one to two days. 

What's my experience with pricing, setup cost, and licensing?

It's a little bit expensive for a small to medium enterprise.

Which other solutions did I evaluate?

We also looked at AlienVault.

What other advice do I have?

I would rate this solution an eight out of ten. To make it a ten they should have more integration with outside vendors. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest

Sign Up with Email