Welcome to Splunk Documentation
Here you'll find documentation for the core Splunk platform and for all other Splunk products. You can make PDFs of product manuals, look up a term in the Splexicon, and submit feedback. You can also follow us on Twitter!
A good additional resource for new Splunk users is the Splunk book: Exploring Splunk.
Time to get Splunking!
Splunk
Splunk is the data collection, indexing and visualization engine for operational intelligence.
Splunk Storm
Splunk Storm is the new Splunk service for analyzing and troubleshooting cloud applications
Splunk App for PCI Compliance
The Splunk App for PCI Compliance tells you how compliant you are to PCI DSS by collecting data from applications, systems, and devices within the PCI cardholder data environment and correlating it with asset and user identity data to monitor for compliance issues.
Splunk App for Enterprise Security
The Splunk App for Enterprise Security provides prebuilt content and searches to help focus security analysts on answering root-cause questions in real-time about malicious and anomalous events in the IT infrastructure.
Splunk SDKs
The Splunk SDKs are written on top of the Splunk REST API. The SDKs give developers broad coverage of the REST API in a language-specific fashion to ease access to the Splunk engine.
Splunk Deployment Monitor App
The Splunk Deployment Monitor App helps you effectively manage medium- to large-scale Splunk deployments. It keeps track of your Splunk instances and provides early warning of unexpected or abnormal behavior. It also tracks license usage.
Splunk Application Framework
The new Application Framework helps you quickly create custom Splunk apps by using prebuilt components, styles, templates, and reusable samples, along with your own custom logic, interactions, reusable components, and UI. You will find reference documentation for the new framework here. See New Framework Preview on the Splunk for Developers site for more information. For information about the current app framework, see App Framework on the Splunk for Developers site.
Splunk for VMware
Splunk for VMware collects and harnesses data from the virtualization layer to enable true end to end visibility in virtualized environments.
Splunk for WebSphere Application Server
Splunk for WebSphere Application Server collects and harnesses log, performance and configuration data to provide end-to-end visibility into WebSphere Application Server environments.
Splunk App for HadoopOps
The Splunk App for HadoopOps provides real-time monitoring, troubleshooting and analysis of the health and performance of your end-to-end Hadoop environment.
Splunk Hadoop Connect
Splunk Hadoop Connect provides bi-directional integration to move data between Splunk and Hadoop easily and reliably. Deploy Splunk quickly for real-time collection, indexing, analysis, and visualizations and then reliably forward events to Hadoop for long-term archiving and additional batch analytics. You can further leverage Splunk by importing data already stored in Hadoop.
Splunk App for Citrix XenDesktop
The Splunk App for Citrix XenDesktop integrates with your XenDesktop environment to provide unprecedented views into the performance and availability of XenDesktop deployments.
Splunk App for Citrix XenApp
The Splunk App for Citrix XenApp integrates with your XenApp environment to provide unprecedented views into the performance and availability of XenApp deployments.
Splunk App for Server Virtualization
The Splunk App for Server Virtualization visualizes performance and environment data for popular server virtualization platforms.
Splunk App for Citrix NetScaler with AppFlow
The Splunk App for Citrix NetScaler with AppFlow produces dashboards and reports for the Citrix NetScaler Appliance, focusing on the load balancing, application firewall, and VPN features of the appliance.
Splunk App for Citrix NetScaler with AppFlow documentation »
Splunk DB Connect
Splunk DB Connect is a generic SQL database extension for Splunk that enables easy integration of database information with Splunk queries and reports.
Splunk App for Microsoft Exchange
The Splunk App for Microsoft Exchange provides easy data aggregation, powerful analytics, and intuitive visualization so you can monitor and audit Microsoft Exchange and its users.
Splunk App for Active Directory
The Splunk App for Active Directory gives you insight into your Microsoft Active Directory deployment with custom content that provides in-depth, enterprise-wide analysis of configuration, health and security.
Splunk App for Unix and Linux
The Splunk App for Unix and Linux provides pre-built data inputs, searches, reports, alerts and dashboards for Linux and Unix management so you can monitor, manage and troubleshoot *nix operating systems from one place. The app includes a set of scripted inputs for collecting CPU, disk, I/O, memory, log, configuration and user data.
Splunk App for Windows
The Splunk App for Windows gives you insight into your Windows server operations with custom, pre-built content that provides in-depth, enterprise-wide analysis on performance, resource usage and security metrics.
Splunk Technology Add-on for Check Point OPSEC LEA
The Splunk Technology Add-on for Check Point OPSEC LEA enables you to index and monitor your Check Point firewall deployment.
Splunk Technology Add-on for Check Point OPSEC LEA documentation »
Splunk MySQL Connector
The Splunk MySQL Connector extends Splunk’s lookup functionality to work with MySQL databases, as well as create, update, and query MySQL databases from the search bar. Note: this app is deprecated. Please use Splunk DB Connect.
Ponydocs
Ponydocs is the open source version of the Splunk documentation platform.
Splunkbase
Splunkbase is an active community of Splunk users and a repository of apps and add-ons that extend the capabilities of Splunk and make it easier to use.