About Splunk Enterprise Security
Splunk Enterprise Security uses the Splunk platform's searching and reporting capabilities to provide the security practitioner with an overall view of their organization's security posture. Enterprise Security uses correlation searches to provide visibility into security-relevant threats and generate notable events for tracking identified threats. You can capture, monitor, and report on data from devices, systems, and applications across your environment.
This manual is written for a user capable of installing, configuring, and administering Splunk software. If you need training on the Splunk platform and Enterprise Security, see "Education Courses for Enterprise Security Customers".
Other manuals for Splunk Enterprise Security:
This documentation applies to the following versions of Splunk® Enterprise Security: 4.1.0