Integrating Suricata with Splunk through SC4S is changing the game. Gone are the days of wrestling with custom parsers and brittle integrations. SC4S comes with automatically handling sourcetype assignments, index routing, metadata enrichment, easy deployment and built-in scalability.

Ever wonder how to tap into cutting-edge AI without managing your own GPU? Splunk AI Assistant for SPL via a cloud-connected solution revolutionizes GenAI by securely hosting AI services in the Splunk-managed Cloud Platform while transmitting only the minimal data needed. 

We’ll unravel how to enable cloud connectivity, differences between the Splunk Enterprise cloud-connected and Splunk Cloud Platform solution, and show you how to get started fast. Walk away ready to supercharge your on-prem Splunk environment with Gen AI—no extra GPUs required.

Run powerful security analytics across Splunk and Amazon Security Lake without rehydrating or moving data. Learn how Splunk Federated Analytics enables faster, cheaper, and smarter threat detection.

In our first installment of this blog series, we introduced the exciting compliance and security enhancements coming to the next Splunk platform version, Splunk Enterprise 10.0 and Splunk Cloud Platform 10.0. Use this series as your go-to resource for key updates, benefits, and preparations for Splunk administrators and developers alike. Today, we continue the journey by diving into upgrade readiness and additional potentially breaking changes, equipping you with the insights you need for a seamless transition.

Ensure your Splunk apps are ready for the future! Splunk Enterprise 10 is here, don't let your users be left behind – upgrade your app today to work towards a seamless transition.

The new and improved Performance Insights for Splunk, a tool for your infrastructure performance monitoring tool belt, gives a correlated view across usage patterns, resources, and system elements, allowing you to optimize your system and ensure you are getting the best value from it.

In our first installment of this blog series, we introduced the exciting compliance and security enhancements coming to the next Splunk platform version, Splunk Enterprise 10.0 and Splunk Cloud Platform 10.0. Use this series as your go-to resource for key updates, benefits, and preparations for Splunk administrators and developers alike. Today, we continue the journey by diving into upgrade readiness and additional potentially breaking changes, equipping you with the insights you need for a seamless transition. 

At .conf24, we shared that we were in the process of integrating Cisco Talos threat intelligence into Splunk Enterprise Security, Splunk SOAR, and Splunk Attack Analyzer. We know just how eager the community has been to see these integrations come to fruition, so we’re thrilled to share that all of the integrations are live for Splunk Security (cloud) customers.

This blog post aims to give Splunk customers (both Splunk Enterprise and Splunk Cloud) a heads-up about the actions they’ll need to take to prepare for upgrading to a Splunk version(coming soon) that will upgrade its core cryptographic library from OpenSSL 1.0.2 to OpenSSL 3. Splunk may additionally produce an Upgrade Readiness experience that will assist customers in identifying specific action items they need to take, but we don’t want to wait for such tooling to become available to start taking action.

Hey Splunky People!

Splunk Enterprise 9.4 is here, packed with game-changing features to enhance visibility, streamline investigations, and optimize response times. Explore updates like the enhanced Deployment Server, Dashboard Studio improvements, and the SPL2 public beta for custom app flexibility.

Ready to discover the tools to drive your digital resilience? Read on to learn more. 

As of Splunk Cloud Platform 9.3.2408 and Splunk Enterprise 9.4, Classic dashboard export features are now deprecated. Use Dashboard Studio for dashboard exports going forward. Check out this Lantern article to learn more.

Explore what's new in the Splunk Enterprise 9.3 release. See how we continue to help you seamlessly route data, save time with scheduled exports and optimize search performance.

The Splunk Custom Visualizations apps End of Life for SimpleXML will reach end of support on Dec 21, 2024, after which no new versions will be released and the app will be archived from Splunkbase. 

We’re happy to share the release of Splunk App for PCI Compliance 5.3.1!

We’re happy to share the release of Splunk Security Essentials 3.8.0, which includes new and updated capabilities to help organizations mature their security programs even faster.

The Splunk Dashboard Examples App for SimpleXML will reach end of life on Dec 19, 2024.

Splunk Enterprise 9.2 is now generally available and features significant improvements to existing functionality. 

Here are the latest webinars, workshops, events and more from the Splunk Public Sector Team!

Here are the latest webinars, workshops, events and more from the Splunk Public Sector Team!

We’re making it easier for Observability Cloud users to seamlessly bring their log data into Splunk Cloud or Enterprise Platform. Go from in-context troubleshooting to in-depth log analysis in one click. Read on for more details!

Our latest updates from the Splunk Security Team include many new releases; SOAR, Splunk Enterprise Security and Splunk User Behavior Analytics! Check out all of our September News!

See the September Updates from your Splunk Observability Team including Session Replay, Splunk APM enhancements, new capabilities in ITSI and more!

Here are the latest webinars, workshops, events and more from the Splunk Public Sector Team!

Check out our newsletter content for the month: New public sector adoption boards, virtual workshops and events, Splunk AI, Tech Talks and more...

Discover what's new in the most recent Splunk Cloud Platform release!

Splunk Enterprise Advisories, Splunk Cloud Platform Updates, What’s new with Splunk Edge Processor, Splunk Essentials Adoption Board, Certifications at .conf23 and more...

Check out our Public Sector Newsletter content for the month: StateRAMP Authorization, Public Sector Events, State of Observability, Splunk Essentials Adoption Board and more...

Value Realization with Splunk Cloud Platform | Operationalizing Your Machine Learning Solutions | Splunk Success Framework and more...

Check out our Public Sector Newsletter content for the month: Leader in SIEM | Events not to miss | One Log to Rule Them All and more....

Action Required for jQuery Updates: Please read this information for updates specific to your deployment type.