Splunk IT Service Intelligence
Splunk IT Service Intelligence is a monitoring solution that offers an innovative, machine-data driven approach to provide comprehensive visibility into operational health and key performance indicators of IT services and the infrastructure that underpins it. Use Splunk IT Service Intelligence to: Define relevant service relationships to quickly visualize and understand dependencies and potential performance impact Present real-time insights into service health against defined performance indicators to driven operational and business decisions Organize and correlate relevant metrics/events into ‘swim lanes’ to speed up investigations and diagnosis Run pre-defined correlation searches against learned indicators to generate notable events Pre-program static thresholds and assign weights to define severity levels Employ machine learning to baseline normal operational patterns and adapt thresholds to changing behavior in real-time
ThreatConnect App for Splunk Enterprise
The ThreatConnect App for Splunk Enterprise gives Splunk users the ability to leverage customizable threat intelligence integrated into Splunk from their ThreatConnect accounts. ThreatConnect provides the ability to aggregate threat intelligence from multiple sources (open source, commercial, communities, and internally created), analyze and track identified adversary infrastructure and capabilities, and put that refined knowledge to work in Splunk identifying threats targeting your organization.
Splunk Add-on for Microsoft Windows
The Splunk for Microsoft Windows add-on includes predefined inputs to collect data from Windows systems and maps to normalize the data to the Common Information Model.