Splunk® Enterprise

Turn Your Machine Data Into Answers

Customers have high expectations. Splunk Enterprise delivers the answers you need to exceed them. Machine data is the key.

Try our Free Cloud Trial

Any Data. Any Question. In Real Time.

Splunk Enterprise monitors and analyzes machine data from any source to deliver Operational Intelligence to optimize your IT, security and business performance. With intuitive analysis features, machine learning, packaged applications and open APIs, Splunk Enterprise is a flexible platform that scales from focused use cases to an enterprise-wide analytics backbone.

Single platform. Many lenses
Collects and indexes log and machine data from any source
Powerful search, analysis and visualization capabilities empower users of all types
Apps provide solutions for security, IT ops, business analysis and more
Enables visibility across on premise, cloud and hybrid environments
Delivers scale, real time, open ecosystem, link different types of data
Available as software or as a cloud service

Get Started

Product Features Splunk Enterprise
Video
What's New in Splunk Enterprise 7.0
Splunkbase Splunk Enterprise 7.0 Overview
Product Brief Splunk Enterprise
Free vs. Enterprise Splunk Product Comparison Chart
Pricing & Licensing Splunk Pricing
Quick Start Bundles Your One-Stop Shop for Operational Intelligence

Product Tour

Collect and Index Data

Index data regardless of format or location – metrics, logs, clickstreams, sensors, stream network traffic, web servers, custom applications, hypervisors, social media, and cloud services. Because the structure and schema are applied only at search time you can analyze the data without limitation.

Search and Investigate

Search data using the powerful and intuitive Splunk Search Processing Language (SPL™). Splunk automatically normalizes your varying data formats and provides 140+ commands so you can perform statistical searches, calculate metrics and even look for specific conditions within a rolling time window. Zoom in and out on timelines to automatically reveal trends, spikes and patterns and click to drill down into search results.

Correlate and Analyze

Splunk makes it easy to find relationships between events or activities. Correlate based on time, location, or custom search results. Use the Transaction command to identify related events as a transaction or session and investigate failed transactions. Decipher what is and is not actionable from disparate data sources with Event Annotation. Enable users to discover and share insights with the point-and-click ease of the Tables and Pivot interfaces. Use the power of machine learning to automatically identify anomalies and incidents.

Visualize and Report

Visualize trends and characteristics in custom dashboards and reports suited to any business, operational or security need. Analyze further with chart overlay and pan and zoom controls. Predictive visualizations let you forecast highs and lows, plan system resources and anticipate workloads. You can also personalize dashboards and reports for anyone, share them as PDFs, or embed them into other applications.

Monitor and Alert

Turn searches into real-time alerts and automatically trigger notifications via email or RSS; then execute remedial actions, send an SNMP trap or generate a trouble ticket. Alerts can be triggered based on a variety of thresholds, trend-based conditions and other complex criteria. Gain additional information at the time of the alert to assist with faster root cause analysis and problem resolution.

Access from Anywhere

Administrators and users can securely access Splunk Enterprise via any standard browser. Splunk Mobile Access enables users to view, interact with and share Splunk operational intelligence using Apple iOS or Android mobile devices. Tailored alerts and views enable managers to track and act on key performance indicators and enable front-line administrators to monitor and investigate operational status from any location.

Splunk Enterprise 7.0

Splunk Enterprise 7.0 delivers advancements in machine learning, with massive scale and speed for data analytics, monitoring and alerting. Watch the video.

Metrics

Numerical data points captured over time, that can be compressed, stored, processed and retrieved more efficiently than events. In the new release, the use of metric data boosts the speed of monitoring, searching and alerting by at least 20X over previous releases.

Machine Learning Toolkit

Enhancements to the toolkit include an improved API, role-based access controls for machine learning models and new out-of-the-box algorithms to make it even easier for you to predict future IT, security, and business outcomes.
Learn More

Event Annotation

Decipher what is and is not actionable from disparate data sources. Event Annotation unifies and correlates log events, annotations and metrics into a single view.

Splunkbase™ App Ecosystem

Our app ecosystem just keeps getting better. Splunkbase boosts the power of Splunk Enterprise 7.0 with 1,000+ solutions, providing ready-to-use analytics, alerts, dashboards, and visualizations.
Explore the Splunkbase ecosystem

Flexible License Enforcement

Unanticipated data growth or bursts of new data during an incident investigation will no longer interrupt your mission-critical Splunk operations.
Read the FAQ

Free Dev/Test Licenses

Splunk customers can now use free Dev/Test licenses to explore new data sources and use cases before moving to production.
The freedom to experiment

“We have compared costs to other solutions including open source and Splunk has a lower total cost of ownership.”

Ed Bailey, enterprise architect, TransUnion

An Enterprise-Class Architecture

The enterprise machine data fabric provides a flexible data architecture that facilitates insights from your data to provide Operational Intelligence.

Any Machine Data

Using no predefined schema, Splunk Universal Forwarders and collection methods such as syslog, HTTP direct API, scripted inputs, and the mobile SDK can index unstructured data from sources such as applications, sensors, endpoint devices, mainframes, industrial systems and network packet streams. Splunk can also combine your machine data with data in your relational databases, data warehouses, and Hadoop and NoSQL data stores.

Enterprise-Class High Availability and Scale

Multi-site clustering and automatic load balancing scale to support hundreds of terabytes of data per day, optimize response times and provide continuous availability. Search Head Clustering provides support for a virtually unlimited number of concurrent users and searches. In addition, the High Performance Analytics Store, the Metrics Store and other acceleration technologies enable you to generate reports on big data at lightning fast speeds.

Enterprise Security and Administration

A robust security model provides secure data transfer, granular role-based access controls, LDAP integration and single sign-on, auditability and data integrity. Every transaction is authenticated, whether through the web and mobile interfaces, command line interface or the Splunk Enterprise API. The distributed management console provides enterprise-wide administration and maintains a complete, signed audit trail of administrative actions and search history.

Splunkbase Apps and Add-Ons

Apps from Splunk, our partners and our community enhance and extend the power of the Splunk platform. Optimize data collection and analysis from your favorite sources. Empower users with pre-built visualizations and functions for security, IT management, business analysis and more. Whatever your need, these apps help you get powerful results right out of the box. Browse Splunkbase to take advantage of the 1,000+ apps and add-ons that you can immediately use with Splunk.
Learn More

Open Development Platform

The Splunk platform makes it easy  to customize Splunk Enterprise to meet the needs of any project. Developers can build custom Splunk applications or integrate Splunk data into other applications by using the Splunk REST API or SDKs for JavaScript, JSON, Java, Python, Ruby and PHP. Your custom applications can leverage the rich functionality of the Splunk platform as well as existing applications available in the Splunk applications library.
Learn More

Enterprise Integration

Splunk Enterprise is the foundation for your enterprise-wide Operational Intelligence. Embed Splunk reports and data in any application. Enrich your relational databases and reports with Splunk insights, trigger actions in ticketing or other systems, or use our ODBC integrations to access Splunk Operational Intelligence in familiar applications such as Microsoft Excel or Tableau.

WE MAKE MOBILE APP DATA SING.

Chris Kammermann, Sr. Infrastructure Engineer

Take on Digital Transformation with Splunk

Premium Solutions

Splunk Enterprise Security

Operationalize threat intelligence with analytics-driven security.

Learn More

Splunk IT Service Intelligence

Monitor critical services with data-driven analytics.

Learn More

Splunk User Behavior Analytics

Detect cyber attacks and insider threats.

Learn More

Splunkbase™ App Ecosystem

Apps from Splunk, our partners and our community enhance and extend the power of Splunk Enterprise. Optimize data collection and analysis from your favorite sources. Empower users with pre-built visualizations and functions. Learn more about the 1,000s of apps and add-ons available in Splunkbase.

Machine Learning Toolkit

A guided modeling experience and live examples let you create custom machine learning models based on the Python for Data Science Library.
Learn More

Splunk Analytics for Hadoop

Bring the power of Splunk Enterprise to Hadoop. Seamlessly search and analyze Hadoop-based data as part of your Splunk Enterprise deployment.
Learn More

Splunk Mobile Intelligence (MINT)

Adds mobile app data to Splunk Enterprise for complete end-to-end visibility into mobile transactions and application performance.
Learn More

Splunk App for Stream

Capture, analyze and correlate network wire data with other log and machine data in Splunk Enterprise.
Learn More

Splunk DB Connect

Get business and enterprise context such as customer, product and HR data using real-time integration into traditional relational databases.
Learn More

Splunk for ODBC

Delivers industry-standard connectivity between Splunk and visualization tools like MS Excel and Tableau.
Learn More

Ask an Expert

Need help with your environment and requirements? Send us your questions and we will get back to you as soon as possible.

If you need immediate assistance, check out our community forum, Splunk Answers.