The new SOC4Kafka connector, built on OpenTelemetry, enables the collection of Kafka messages and forwards these events to Splunk. It serves as a replacement for the existing Kafka Connector (SC4Kafka) SOC4Kafka is designed to capture events published to Kafka topics and efficiently forward them to Splunk , SOC4Kafka empowers organizations to utilize Splunk's powerful analytics and visualization capabilities. This integration enables real-time monitoring, analysis, and valuable insights from collected event data.

The past few weeks have brought significant and exciting developments for the Splunk community! We've seen major advancements, exciting new features, and a wealth of knowledge shared. As we continue our "Strengthen Your Future" series, it’s the perfect time to reflect on some of the most impactful announcements and resources that are shaping the Splunk Platform.

Discover the AI assistant usage dashboard in Cloud Monitoring Console and how Splunk Admins can use it to optimize their AI usage within Splunk.

Splunk developers, prepare for a game-changing update! The new Splunkbase App Listing Management public preview is here, streamlining your app submission experience. Enjoy powerful features like draft listings, a massive 2GB package limit, enhanced developer profiles, and a lightning-fast, automated AppInspect process that cuts review times from days to minutes. This is designed to supercharge innovation and ensure top-quality apps for all Splunk users.

The Splunk Developer Program is officially GA! Access centralized tools, licenses, support, and community recognition to build high-quality apps and extend Splunk’s capabilities. Learn more at dev.splunk.com.

What's New

We are excited to announce the latest enhancements to Splunk Observability Cloud as well as what is currently in preview for the Splunk Observability portfolio. These new innovations to Splunk Observability Cloud are designed to help ITOps and engineering teams troubleshoot application issues faster and gain deeper insight into critical user journeys. The below features are now generally available to customers as of August 26, 2025. 

A circular graphic composed of numerous small white outline symbols, forming a prominent human stick figure shape in the center, against an orange and pink gradient background

At Splunk, we believe that true innovation is inclusive innovation. That's why we're excited to pull back the curtain and introduce you to our new quarterly "Inside Splunk Accessibility" series. We’ll share the critical role accessibility plays in Splunk product development and update you on  our current initiatives. 

Integrating Suricata with Splunk through SC4S is changing the game. Gone are the days of wrestling with custom parsers and brittle integrations. SC4S comes with automatically handling sourcetype assignments, index routing, metadata enrichment, easy deployment and built-in scalability.

Ever wonder how to tap into cutting-edge AI without managing your own GPU? Splunk AI Assistant for SPL via a cloud-connected solution revolutionizes GenAI by securely hosting AI services in the Splunk-managed Cloud Platform while transmitting only the minimal data needed. 

We’ll unravel how to enable cloud connectivity, differences between the Splunk Enterprise cloud-connected and Splunk Cloud Platform solution, and show you how to get started fast. Walk away ready to supercharge your on-prem Splunk environment with Gen AI—no extra GPUs required.

Automated Archiving is a new capability within the Metrics Management experience which automates the routing and storing of metrics data into an low-cost storage

We are excited to announce the latest enhancements to Splunk Observability Cloud as well as what is currently in preview for the Splunk Observability portfolio.  These new innovations to Splunk Observability Cloud are designed to help ITOps and engineering teams better standardize observability practices across teams and optimize their observability costs. The below features, with the exception of the Q-Release (scheduled to go live as part of the Splunk Cloud Platform launch on July 28, 2025), are now generally available to customers as of July 22, 2025.

Run powerful security analytics across Splunk and Amazon Security Lake without rehydrating or moving data. Learn how Splunk Federated Analytics enables faster, cheaper, and smarter threat detection.

In our first installment of this blog series, we introduced the exciting compliance and security enhancements coming to the next Splunk platform version, Splunk Enterprise 10.0 and Splunk Cloud Platform 10.0. Use this series as your go-to resource for key updates, benefits, and preparations for Splunk administrators and developers alike. Today, we continue the journey by diving into upgrade readiness and additional potentially breaking changes, equipping you with the insights you need for a seamless transition.

We are excited to announce the latest enhancements to Splunk Observability Cloud as well as what is currently in preview for the Splunk Observability portfolio.  These new innovations to Splunk Observability Cloud are designed to help ITOps and engineering teams better standardize observability practices across teams, improve end-user experiences, optimize cloud monitoring and debug problems faster in microservice-based applications. The features in this article are now generally available to customers as of June 24, 2025.

We are pleased to announce the general availability of Splunk Enterprise Security 8.1. Splunk becomes the only vendor to bring truly unified threat detection, investigation, and response (TDIR) workflows fueled by automation to both customer managed deplo

Ensure your Splunk apps are ready for the future! Splunk Enterprise 10 is here, don't let your users be left behind – upgrade your app today to work towards a seamless transition.

This month, we’re delivering several new innovations in Splunk Observability Cloud and Splunk AppDynamics (25.4 release) to help improve ITOps and engineering teams' ability to detect and resolve business-impacting incidents faster with less toil. 

Splunk Observability Cloud’s latest updates deliver powerful upgrades for engineers running modern, cloud-native apps—improving Kubernetes troubleshooting, JavaScript and mobile crash visibility, and log-in-context search. We have also introduced our first major integration between Splunk Observability with ThousandEyes to help accelerate mean time to innocence (MTTI) between teams and enhance collaborative troubleshooting.

Splunk AppDynamics continues to deliver innovations that help ITOps teams find issues faster, cut through alert noise, and stay in control of their n-tier apps and infrastructure.  This month’s innovations bring smarter search, flexible tagging, and enhanced AI-driven insights across hybrid and on-prem environments.

The new and improved Performance Insights for Splunk, a tool for your infrastructure performance monitoring tool belt, gives a correlated view across usage patterns, resources, and system elements, allowing you to optimize your system and ensure you are getting the best value from it.

This article describes when the Splunk App for Anomaly Detection will go End of Life, including steps to be taken if you are using the app today.

We’re excited to announce the launch of a foundational enhancement to Splunkbase: App Tiering.

Now you can filter apps by author type—Splunk, Cisco, Partners, or Community—making it faster to find trusted solutions that fit your needs.

In April, the Splunk Threat Research Team had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app (v5.3.0 and v5.4.0). With these releases, there are 42 new analytics and 14 new analytic stories now available in Splunk Enterprise Security via the ESCU application update process.

In our first installment of this blog series, we introduced the exciting compliance and security enhancements coming to the next Splunk platform version, Splunk Enterprise 10.0 and Splunk Cloud Platform 10.0. Use this series as your go-to resource for key updates, benefits, and preparations for Splunk administrators and developers alike. Today, we continue the journey by diving into upgrade readiness and additional potentially breaking changes, equipping you with the insights you need for a seamless transition. 

This month, we’re delivering several platform, infrastructure, application and digital experience monitoring enhancements across Splunk Observability Cloud to help engineering teams gain earlier detection and faster investigation of business-impacting issues.   

Today, we are excited to announce that you can now see everything related to your team directly on your homepage. Easily see your Splunk APM services, dashboards, top alerts, and team members of every team you’re part of, and join teams directly on the homepage.

You asked, and we delivered! SPL just got easier with the latest release of the Splunk AI Assistant for SPL app 1.1.0, offering general availability of a new personalization feature. The AI Assistant now understands your environment, generating more accurate SPL from natural language prompts. Check out what’s new in v1.1.0 and learn how to get started today.

In March, the Splunk Threat Research Team had two releases of new security content via the Enterprise Security Content Update (ESCU) app. Check out this post for the full details!

Celebrate the beta launch of the Splunk Developer Program by joining the Splunk Build-a-thon! Explore the four exciting tracks: App Development, Add-on Integration, Data Management, and AI/ML. Build innovative solutions using Splunk’s developer tools and compete for prizes including .conf25 passes, Splunk EDU credits, and Cisco Store gift cards

Ready to unlock the power of AI in Splunk? The AI Adoption Hub was built for practitioners who want to learn about and get started with AI at Splunk. It’s packed with expert-curated resources and insights to help you harness AI’s power to improve digital resilience. Check it out!

Check out the latest and greatest from Splunk Observability Cloud - from APM to log enhancements, we've released new features and capabilities to help you find and fix issues faster in your environment

Explore what's new in Splunk Cloud Platform 9.3.2411. Learn how this latest release continues to boost resilience, expand visibility, and maximize data value.