Product Brief

Operational, security and economic insights across your AWS environment

  • Enhance security through visibility into all activity in your AWS account.
  • Help ensure adherence to security and compliance standards with a full audit trail.
  • Leverage machine learning for proactive insights, recommendations and anomaly detection
  • Effectively manage AWS costs with an in-depth view of used/unused resources, cost by account and cost by service

The Splunk App for AWS helps you gain end-to-end visibility across your AWS environment, helping you move your mission-critical workloads to AWS with agility, security and confidence. The Splunk App for AWS, included in Splunk Insights for AWS Cloud Monitoring, provides users with dashboards, visualizations and alerts right out of the box.

The Splunk App for AWS offers a rich set of pre-built dashboards and reports to analyze and visualize data from numerous AWS services—including AWS CloudTrail, AWS Config, AWS Config Rules, Amazon Inspector, Amazon RDS, Amazon CloudWatch, Amazon VPC Flow Logs, Amazon S3, Amazon EC2, Amazon CloudFront, Amazon EBS, Amazon ELB and AWS Billing—all from a single, free app.

Splunk App for AWS Product Tour


Comprehensive security dashboards allow customers to view AWS audit activity, unauthorized users, key-pair and security group violations, VPC traffic source, out-of-band instance provisioning, security assessment findings, compliance checks, and AWS instance changes.


Splunk’s patent-pending topology view gives a graphical representation of your current AWS deployment. It allows you to view the topology and resource relationships by account, region, VPC, tag and time. This capability also allows you to playback how the environment was built and adds interactive layers of insight for each AWS element.

Machine Learning Insights

Dashboards leveraging the Splunk Machine Learning Toolkit provide additional insight and recommendation capabilities for Reserved Instance cost optimization, EC2 sizing, ELB health, Security Group orphans and Elastic IPs inactivity. Anomaly detection has also been applied across security and billing data.


Splunk’s Resource Timeline view allows you to compare and correlate AWS Cloudwatch, CloudTrail, Config Rules and Inspector events in an interactive time-series ribbon. By analyzing events from a holistic view, you can dramatically accelerate time to insights and speed of issue resolution.


Comprehensive AWS Operations dashboards allow customers to view EC2 instance utilization metrics, EBS footprint and usage details, S3 traffic volume, VPC traffic flow, ELB latency, Lambda activity and CloudFront CDN latency. Visualizations allow for both holistic views (by account, region, tag and time) and individual instance layers, down to the raw search and original metrics.


Splunk’s AWS cost management capabilities begin with your current and historical AWS instance inventory and extend into an in-depth view of used/unused resource cost, cost by account, and cost by service. Interactive capacity and budget planning dashboards allow you to properly assess cost versus budget over time.

About AWS: For over 12 years, Amazon Web Services has been the world’s most comprehensive and broadly adopted cloud platform. AWS offers over 125 fully featured services for compute, storage, databases, networking, analytics, machine learning and artificial intelligence (AI), Internet of Things (IoT), mobile, security, hybrid, virtual and augmented reality (VR and AR), media, and application development, deployment, and management from 55 Availability Zones (AZs) within 18 geographic regions and one Local Region around the world, spanning the U.S., Australia, Brazil, Canada, China, France, Germany, India, Ireland, Japan, Korea, Singapore, and the UK. AWS services are trusted by millions of active customers around the world—including the fastest-growing startups, largest enterprises, and leading government agencies—to power their infrastructure, make them more agile, and lower costs. To learn more about AWS, visit

About Splunk: Splunk Inc. provides the leading software platform for real-time Operational Intelligence. Splunk software and cloud services enable organizations to search, monitor, analyze and visualize machine-generated big data coming from websites, applications, servers, networks, sensors and mobile devices. More than 13,000 enterprises, government agencies, universities and service providers in over 110 countries use Splunk software to deepen business and customer understanding, mitigate cybersecurity risk, prevent fraud, improve service performance and reduce costs. Splunk products include Splunk® Enterprise, Splunk Cloud™, Splunk Light and premium solutions. To learn more, please visit


Ready to gain end-to-end visibility into your AWS environment? The Splunk App for AWS is available for free on Splunkbase.

Looking to get started? Now you can simplify your procurement process and subscribe to Splunk Insights for AWS Cloud Monitoring via the AWS Marketplace.