Splunk Enterprise Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How does Splunk Enterprise Security work?

neermine
Path Finder
‎08-25-2018 01:42 PM

hello

I want to understand the concept of how Splunk security works.
I think that it has a database of signatures of threat and when we enter the logs, it does the pattern matching. Is that right?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

David
Splunk Employee
Splunk Employee
‎08-27-2018 11:20 AM

Hi neermine,

Splunk is a platform for analyzing machine generated data of all kinds from server logs to even metadata about network communications. The analysis can include simple pattern matching, behavioral analytics (spikes and newness), machine learning, and more.

To get a good sense, I'd recommend you walk through some of our examples that show how Splunk works with Security including:

If you ever need more, don't hesitate to reach out to our sales org for help.

View solution in original post

Reply
Solved! Jump to solution
Solution

David
Splunk Employee
Splunk Employee
‎08-27-2018 11:20 AM

Hi neermine,

Splunk is a platform for analyzing machine generated data of all kinds from server logs to even metadata about network communications. The analysis can include simple pattern matching, behavioral analytics (spikes and newness), machine learning, and more.

To get a good sense, I'd recommend you walk through some of our examples that show how Splunk works with Security including:

If you ever need more, don't hesitate to reach out to our sales org for help.

Reply
Solved! Jump to solution

neermine
Path Finder
‎08-27-2018 01:51 PM

thanks 🙂

Reply
Solved! Jump to solution

markdennett
New Member
‎03-19-2019 08:51 AM

Hi,

Can you tell me if this uses machine learning decision tree techniques specifically? Thanks

0 Karma
Reply
Get Updates on the Splunk Community!

Let’s Talk Terraform

If you’re beyond the first-weeks-of-a-startup stage, chances are your application’s architecture is pretty ...

Cloud Platform | Customer Change Announcement: Email Notification is Available For ...

The Notification Team is migrating our email service provider. As the rollout progresses, Splunk has enabled ...

Save the Date: GovSummit Returns Wednesday, December 11th!

Hey there, Splunk Community! Exciting news: Splunk’s GovSummit 2024 is returning to Washington, D.C. on ...