San Francisco, CA, USA
Jun 10, 2021   |  By Splunk Threat Research Team
The Splunk Threat Research team recently developed a new analytic story to help security operations center (SOC) analysts detect adversaries executing password spraying attacks against Active Directory environments. In this blog, we’ll walk you through this analytic story, demonstrate how we can simulate these attacks using PurpleSharp, collect and analyze the Windows event logs, and highlight a few detections from the May 2021 releases.
Jun 10, 2021   |  By Billy Hoffman
On Tuesday June 8th, the Content Delivery Network Fastly experienced an outage that made large swaths of the web unavailable for nearly an hour. To focus on the positive, this outage can serve as a wakeup call for Observability teams, because it shows how much modern sites depend on resources beyond their immediate control, and how hard it is to "observe" these kinds of issues with an incomplete Observability mindset.
Jun 8, 2021   |  By Adam Swanda
At Splunk, we’re constantly on the hunt for new and emerging threats — tirelessly developing detection techniques to zero in on bad actors, while sharing key intelligence around cybercrime activity. But because threat intelligence can relate to so many different things — ranging from spear phishing campaigns to dark web dealings — it can be a challenge to cover and define all the specifics of what (or who) to look out for.
Jun 8, 2021   |  By Amit Sharma
Today’s business is powered by data. Success in the digital world depends on how quickly data can be collected, analyzed and acted upon. The faster the speed of data-driven insights, the more agile and responsive a business can become. Apache Kafka has emerged as a popular open-source stream-processing solution for collecting, storing, processing and analyzing data at scale.
Jun 8, 2021   |  By Harnit Singh
In a previous blog post, "Monitoring Kafka Performance with Splunk," we discussed key performance metrics to monitor different components in Kafka. This blog is focused on how to collect and monitor Kafka performance metrics with Splunk Infrastructure Monitoring using OpenTelemetry, a vendor-neutral and open framework to export telemetry data. In this step-by-step getting-started blog, we will.
Jun 7, 2021   |  By Shannon Davis
On June 2nd, 2021, the White House released a memo from Anne Neuberger, Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technology. The subject? “What We Urge You To Do To Protect Against The Threat of Ransomware.” It outlines several recommendations on how to protect your organization from ransomware. The memo was a follow-up to President Biden’s May 12th Executive Order on Improving the Nation’s Cybersecurity Order (EO14028).
Jun 1, 2021   |  By Olivia Courtney
If you’re an active Splunk Phantom user, it’s safe to assume you know what a playbook is. If not, here’s a quick summary: Phantom playbooks allow analysts to automate everyday security tasks, without the need for human interaction. Manual security tasks that used to take 30 minutes can now be executed automatically in seconds using a playbook. The result? Increased productivity and efficiency, time saved, and headaches avoided.
May 28, 2021   |  By Matt Sayar
When running Splunk Phantom with AWS services, it can be tricky to make sure Splunk Phantom has the right access. When you’re managing multiple AWS accounts, the effort to configure Splunk Phantom’s access to every account can feel insurmountable. Fortunately, Amazon has the Security Token Service to solve this problem with temporary credentials, so we’ve integrated it with Splunk Phantom!
May 28, 2021   |  By Jennifer Swallow
Splunk Lantern, your go-to source for outcome-oriented, actionable Splunk content, just got a makeover. You can now more easily navigate with a new interface, take advantage of new features to help you find the content you need, and access new content types to achieve your goals.
May 25, 2021   |  By Subu Baskaran
If you were using the Splunk App for Infrastructure (SAI) and / or other Splunk apps for infrastructure — *nix, Windows, and VMware — you’ve probably enjoyed the ease and quickness these apps offered to get started with basic infrastructure monitoring tasks.
Jun 7, 2021   |  By Splunk
When you’re troubleshooting, you need to find your answers fast. But layers of complexity are always getting in the way. Watch this high-stakes pursuit as a developer chases down the Complexity Jerk in her quest to pinpoint the source of a problem.
Jun 7, 2021   |  By Splunk
For SREs, alerts are part of the job. But they shouldn’t be when you’re not on call, or when the problem isn’t yours. Watch a day in the life of an SRE, and see how Splunk Observability Cloud helps him put useless alerts—and complexity—to bed.
May 27, 2021   |  By Splunk
Observability – what is it? Until now, the tools IT and DevOps teams have relied on to monitor and manage applications have often been disconnected. With a massive shift to cloud infrastructure, organizations are now wrestling with operational complexity. Leadership must look to solutions that break down silos and offer real-time insights and visibility to decrease time troubleshooting.
May 5, 2021   |  By Splunk
Hear from Rappi’s EVP Engineering, Alejandro Comisario about how as one of the largest technology startups in Latin America, the on-demand delivery service relies on the Splunk Observability Cloud for real-time, end-to-end visibility across its complex backend system of 1k+ microservices. Since COVID-19 Rappi has grown 300%, relying on Splunk’s real-time observability to eliminate app issues for customers and stay on top of its infrastructure, applications, and overall business. With Splunk APM, Rappi now has in-depth insights into service behavior and directed troubleshooting, bringing developers’ mean-time-to-resolution (MTTR) down by 90+%.
May 4, 2021   |  By Splunk
As infrastructure modernizes, it becomes more complex and more difficult to monitor and operate. To truly understand what your systems are doing, you need full-stack, end-to-end observability. We built Splunk Observability Cloud to eliminate your blind spots and go from alert to problem resolution in seconds–not hours. Splunk Observability Cloud provides one unified experience for seamless monitoring, troubleshooting, and resolution across any stack, at any scale.
May 4, 2021   |  By Splunk
Log analysis is a key part of getting answers from your stack, and Splunk Log Observer, part of the Splunk Observability Cloud, is built for fast, powerful log analysis. Trust the industry-leading expert on logs to help you draw insights fast from any volume of data, in real-time, without having to write any queries by hand.
May 4, 2021   |  By Splunk
Great user experience and web performance are essential for modern applications. Time spent waiting leads customers to leave. To keep users happy and revenue flowing, you need to know what's happening from the user's perspective. Splunk Digital Experience Monitoring (RUM & Synthetics) helps you see how your users really experience your site. As part of Splunk Observability Cloud, Digital Experience Monitoring gives you an end-to-end look at how your application is performing.
May 4, 2021   |  By Splunk
Innovate faster in the cloud and elevate your user experiences with Splunk APM. Built for the cloud-native enterprise, Splunk APM uses all your data in NoSample^TM^ full fidelity for you to act on your data in seconds. Free your code and future-proof your applications today with Splunk APM. Get a free trial as part of Splunk Observability Cloud today.
May 4, 2021   |  By Splunk
Splunk Observability Cloud provides a single, consistent user experience across all metric, trace and log data. It gives users a seamless and streamlined workflow for monitoring, troubleshooting, and investigation - making it easy to go from problem detection to resolution in minutes.
Apr 30, 2021   |  By Splunk
Wherever you are in your cloud journey and whatever your environment looks like, Splunk can monitor the performance of all your servers, containers and apps in real-time. Get real-time observability for data from any cloud, any vendor, and any service. Try our free Infrastructure Monitoring Trial and see for yourself.
Nov 16, 2018   |  By Splunk
Gaining insights from your data requires more than collecting and analyzing metrics and logs. With the acceleration of customer and business demands, site reliability engineers and IT Ops analysts now require operational visibility into their entire architecture, something that traditional APM tools, dev logging tools, and SRE tools aren’t equipped to provide. Observability enables you to inspect and understand your IT stack; but what is it, and how does it differ from IT monitoring?
Oct 21, 2018   |  By Splunk
Imagine a world where incident alerts arrive 30 minutes before problems even begin — you’d actually have the power to prevent outages and deliver a truly seamless experience to your customers. Sound impossible? Think again — the right AIOps (Artificial Intelligence for IT Operations) solution can help you maintain uptime, reduce manual incident-management tasks and increase productivity.
Oct 21, 2018   |  By Splunk
The hype around artificial intelligence (AI) and machine learning (ML) has exploded, sometimes overshadowing the real uses and innovations happening everyday at organizations across the globe. The reality is that applying AI and ML to data-dependent challenges presents opportunity for better security, faster innovation and overall improved efficiency.
Oct 1, 2018   |  By Splunk
Most IT organizations have adopted event management as a central practice to help find and fix what’s broken, but today's tools focus on managing the volume of events—they do not deliver service context. Without context, you are ill-equipped to focus on the right problem at the right time. What you need is something different—something that makes IT events less eventful and more insightful—and now, you can finally do it!
Oct 1, 2018   |  By Splunk
At Splunk, we make it easy for our customers to turn mountains of machine data in their Amazon Web Services (AWS) and hybrid environments into valuable business, operational and security insights that improve their businesses.
Sep 1, 2018   |  By Splunk
The financial services industry has unique challenges that often prevent it from achieving its strategic goals. The keys to solving these issues are hidden in machine data—the largest category of big data—which is both untapped and full of potential.
Sep 1, 2018   |  By Splunk
From protecting customer experience to preserving lines of revenue, IT operations teams are faced with increasingly complex responsibilities while being required to prevent outages that could harm the organization. Splunk IT Service Intelligence (ITSI) utilizes AI powered by machine learning to deliver a predictive IT and ensure optimal application performance and quality.
Aug 1, 2018   |  By Splunk
Splunk is probably the single most powerful tool for searching and exploring data you will ever encounter. Exploring Splunk provides an introduction to Splunk -- a basic understanding of Splunk's most important parts, combined with solutions to real-world problems.
Aug 1, 2018   |  By Splunk
Let’s face it — the struggle to monitor basic server metrics in modern hybrid infrastructures is real. But deploying and maintaining monitoring tools doesn’t have to be a major headache. Splunk Insights for Infrastructure can help your team index both Linux and AWS data, enabling them to quickly identify and remediate the root cause of problems.
Jul 1, 2018   |  By Splunk
Operational intelligence, derived from the collection and analysis of machine-generated data, has often been used purely for the monitoring and management of IT infrastructure, applications and security. However, such data can also provide invaluable insight across the rest of the business.

Splunk produces software for searching, monitoring, and analyzing machine-generated big data, via a Web-style interface.

Splunk turns machine data into answers. Regardless of your organization’s size and industry, Splunk can giveyou the answers you need to solve your toughest IT, security and business challenges—with the option todeploy on-premises, in the cloud or via a hybrid approach.

Work the Way Your Data Works:

  • Real-Time: Splunk gives you the real-time answers you need to meet customer expectations and business goals.
  • Machine Data: Use Splunk to connect your machine data and gain insights into opportunities and risks for your business.
  • Scale: Splunk scales to meet modern data needs — embrace the complexity, get the answers.
  • AI and Machine Learning: Leverage artificial intelligence (AI) powered by machine learning for actionable and predictive insights.

Any Question. Any Data. One Splunk.