14 DAY TRIAL // Real-time operational intelligence provider Splunk has announced the availability of Splunk App for Enterprise Security 2.4, a solution that helps organizations uncover unknown threats that target their networks.
Splunk App for Enterprise Security allows companies to detect abnormal activity and attack patterns via searches, dashboards and visualizations for Advanced Threat Detection.
The product analyzes command and control instructions embedded in URLs, unusual user agent strings, abnormal amounts of traffic, and significant increases in unknown communications.
“Statistical analysis is the new weapon of the security warrior defending against threats that bypass traditional security detection systems. This is one of the reasons why more than 1,500 organizations around the world rely on Splunk for security,” said Mark Seward, senior director of security and compliance at Splunk.
“The new Splunk App for Enterprise Security enables statistical analysis of HTTP traffic to help security professionals determine a baseline for what's normal, quickly detect outliers and use those events as starting points for security analysis and investigation.”