Splunk® App for Anomaly Detection

Use the Splunk App for Anomaly Detection

Acrobat logo Download manual as PDF


This documentation does not apply to the most recent version of Splunk® App for Anomaly Detection. For documentation on the most recent version, go to the latest release.
Acrobat logo Download topic as PDF

About the Splunk App for Anomaly Detection

The Splunk App for Anomaly Detection is a free app you can download from Splunkbase.

The Splunk App for Anomaly Detection finds anomalies in time-series datasets and provides an end-to-end workflow to manage and operationalize anomaly detection tasks. The app detects seasonal patterns and determines all of the optimal parameters automatically.

Using the app you can create anomaly detection jobs, run these jobs on a regular cadence, view SPL queries, and create alerts. The app works with any time-series dataset that can be ingested into the Splunk platform.

The app uses machine learning to detect seasonality in the data without user inputs, lowering the barriers to realizing value. The app also performs health diagnostics on the time-series to check whether the dataset is fit for anomaly detection.

Similar to other Splunk applications, the resources consumption of CPU and memory is commensurate with the size of the datasets that you use.

Splunk App for Anomaly Detection features

The following features are included with the Splunk App for Anomaly Detection:

  • Data health check: A diagnostic "health check" automatically alerts the user to a variety of possible data quality issue
  • Simple sensitivity adjustment: You can easily adjust the detection sensitivity with a simple +/- interface. More (or fewer) anomalies can be intelligently produced to fit your alerting preferences.
  • Creation of a Search Processing Language (SPL) query for use elsewhere in the Splunk platform: When you create an anomaly detection job, the app writes an SPL query you can view and use to generate alerts based on the anomaly detection results.

Requirements for the Splunk App for Anomaly Detection

In order to successfully run the Splunk App for Anomaly Detection, the following is required:

Last modified on 06 July, 2023
  NEXT
Install the Splunk App for Anomaly Detection

This documentation applies to the following versions of Splunk® App for Anomaly Detection: 1.0.0

Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters