Manuals
Splunk® Enterprise Security

Splunk Enterprise Security provides prebuilt content and searches to help focus security analysts on answering root-cause questions in real-time about malicious and anomalous events in the IT infrastructure.

Release Notes
Information on the new features and functionality in this release of Splunk Enterprise Security.

Installation and Upgrade Manual
A guide to installing and upgrading Splunk Enterprise Security.

Use Splunk Enterprise Security
A guide to the dashboards and security analyst workflows in Splunk Enterprise Security.

Administer Splunk Enterprise Security
Configure, manage, customize, and audit Splunk Enterprise Security.

Use Cases
A collection of use cases for Splunk Enterprise Security

Splunk Enterprise Security Tutorials
Get started creating correlation searches in Splunk Enterprise Security.

REST API Reference
Reference information about the Splunk Enterprise Security REST API.

Included Products

Splunk® Add-on for Splunk UBA
Splunk Add-on for for Splunk UBA allows you to index data from Splunk UBA in the Splunk platform.

Splunk® Add-on for Facebook ThreatExchange
The Splunk Add-on for Facebook ThreatExchange allows Splunk Enterprise Security users to leverage intelligence from Facebook ThreatExchange within the ES Threat Intelligence framework to populate the existing Threat Activity and Threat Artifact views.