dEEpEst
☣☣ In The Depths ☣☣
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
- Joined
- Mar 29, 2018
- Messages
- 13,860
- Solutions
- 4
- Reputation
- 27
- Reaction score
- 45,546
- Points
- 1,813
- Credits
- 55,340
7 Years of Service
56%
What is “Splunk”?
..
It is one of the most popular SIEM solutions. Splunk is a software platform for searching and analyzing data, and then this data is collected and analyzed from many devices connected to Splunk. Using “Splunk”?..Splunk can help organizations as a solution to collect and analyze big data, which is related to websites, user programs (banking transactions for fraud detection, for example), and various devices, such as network equipment (firewall, IDS systems, terminal logs). It is collected, analyzed, and attempts are made to deduce relationships between them.
How does Splunk work?..When data is received and stored in an indexing form through which the data flows and is stored in completely independent searchable event queues. After collecting the information, Splunk connects this data in a meaningful way according to structured rules that were established beforehand. extract the results we want using filters and search in Splunk and display them using different graphical charts. There is also a special search language for Splunk called SPL that facilitates the search process in an intelligent and organized way.
Main advantages of Splunk:
Indexing.
Search Search.
Alerts.
Dashboard.
Pivot.
Reports.
Data modeling.Download Tool
Last edited: