Splunk App for Enterprise Security
The Splunk App for Enterprise Security helps customers identify and address emerging security threats through the use of continuous monitoring, alerting and analytics. Suitable for a small security team or an enterprise security operations center, the app is the primary data interface for the analytics enabled security operation. * Situational awareness dashboards give custom views of risk per domain, asset, or identity * Incident Review provide analysis workflows that reveal the priority of the incident, incident context, and impact on assets and identities * Analysis centers provide indicators of unknown threats from traffic abnormalities * Correlation tools enable monitoring for new attackers by correlating new domain registration with web activity * Statistical outlier detection tools aid anomaly detection * Unified Threat Intelligence from many sources * Data inputs provided for NetFlow, logs, RDBMS, APIs, & more
The Splunk MINT App is part of Splunk MINT (Beta). The Splunk MINT App pulls raw mobile app data from the Splunk MINT Data Collector and makes it available inside your Splunk installation. From there you can combine your mobile application data with other data in order to get end-to-end visibility and analytics so you can: - Identify availability and performance issues across mobile apps, networks (LTE or Wi-Fi), and back-end systems - Gain additional insight into how, where and when users are using your mobile apps - Compare and contrast app performance and usage with web- or client-based performance and usage - Present new insights in real time to IT and business stakeholders using a single platform
Splunk 5.x App for Microsoft Windows
The Splunk App for Microsoft Windows ONLY works on Splunk 5.x systems. For similar functionality on Splunk 6 and later editions, please use the Splunk App for Windows Infrastructure: http://apps.splunk.com/app/1680/ The Splunk App for Windows provides examples of pre-built data inputs, searches, reports, alerts, and dashboards for Windows server and desktop management. You can monitor, manage, and troubleshoot Windows operating systems from one place. Included are scripted inputs for CPU, disk, I/O, memory, log, configuration, and user data, plus a web-based setup UI for indexing Windows Events Logs.