Splunk Enterprise Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How does Splunk Enterprise Security work?

neermine
Path Finder
‎08-25-2018 01:42 PM

hello

I want to understand the concept of how Splunk security works.
I think that it has a database of signatures of threat and when we enter the logs, it does the pattern matching. Is that right?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

David
Splunk Employee
Splunk Employee
‎08-27-2018 11:20 AM

Hi neermine,

Splunk is a platform for analyzing machine generated data of all kinds from server logs to even metadata about network communications. The analysis can include simple pattern matching, behavioral analytics (spikes and newness), machine learning, and more.

To get a good sense, I'd recommend you walk through some of our examples that show how Splunk works with Security including:

If you ever need more, don't hesitate to reach out to our sales org for help.

View solution in original post

Reply
Solved! Jump to solution
Solution

David
Splunk Employee
Splunk Employee
‎08-27-2018 11:20 AM

Hi neermine,

Splunk is a platform for analyzing machine generated data of all kinds from server logs to even metadata about network communications. The analysis can include simple pattern matching, behavioral analytics (spikes and newness), machine learning, and more.

To get a good sense, I'd recommend you walk through some of our examples that show how Splunk works with Security including:

If you ever need more, don't hesitate to reach out to our sales org for help.

Reply
Solved! Jump to solution

neermine
Path Finder
‎08-27-2018 01:51 PM

thanks 🙂

Reply
Solved! Jump to solution

markdennett
New Member
‎03-19-2019 08:51 AM

Hi,

Can you tell me if this uses machine learning decision tree techniques specifically? Thanks

0 Karma
Reply
Get Updates on the Splunk Community!

Cloud Platform & Enterprise: Classic Dashboard Export Feature Deprecation

As of Splunk Cloud Platform 9.3.2408 and Splunk Enterprise 9.4, classic dashboard export features are now ...

Explore the Latest Educational Offerings from Splunk (November Releases)

At Splunk Education, we are committed to providing a robust learning experience for all users, regardless of ...

New This Month in Splunk Observability Cloud - Metrics Usage Analytics, Enhanced K8s ...

The latest enhancements across the Splunk Observability portfolio deliver greater flexibility, better data and ...