There are a select number of U.S. cities dominated by certain industries that ultimately help to define those cities. Detroit for cars, Nashville for country music, Pittsburgh for the Steelers and Primanti Brothers – and Washington, DC for government.

Considering there isn’t a single organization or entity in the world with more data than the U.S. government, Washington, DC has been home to annual SplunkLive! events for the past five years. Yesterday, we hosted our largest yet with nearly 750 attendees.

Our Chairman and CEO Godfrey Sullivan kicked off the event with an overview of Splunk’s capabilities in private and public sectors, touching on key points like the importance of machine data for verifying accuracy and how continuous monitoring is…

Last week, Splunk was named a leader in Gartner’s Magic Quadrant for Security Information and Event Management (SIEM). For the MQ, Gartner evaluated Splunk® Enterprise and the Splunk App for Enterprise Security and also spoke to multiple Splunk customers as part of the process. To read the Gartner report, please register here

We are very proud of this award, as it reflects the success that you, the security and compliance customers of Splunk, have had with our product. We are now up to over 2000 global security and compliance customers using for a wide range of use cases including, incident investigations, forensics, reporting and dashboarding, real-time correlations and alerting, advanced threat detection, compliance reporting, fraud detection, and…

Teach Splunk to predict missing field values in your data!  With the brand new Splunk Predict App, you can predict, and fill-in, the value of missing fields in your data, using training sets that have values.   This app builds Naive Bayes models to predict field values.  In some test sets, this model often predicted values correctly 99.95%+ of the time.

• From customers that fill out their gender, you can predict the gender of customers that have not, perhaps based on writing style, word choice, or other features.
• From events that list a host name, you can predict the host name for events that are missing it.
• From customers that explain why they

…

Today marked the return of the Microsoft Exchange Conference (MEC). After a 10 year break, Microsoft revived the conference and team Splunk was onsite in Orlando supporting the revival. At Splunk we deliver multiple solutions that support Microsoft Technologies. At MEC we are showing the Splunk App for Microsoft Exchange, which delivers real-time operations data about your messaging infrastructure. Overall the experience on day 1 was amazing. The interest with the Exchange App had attendees lining up for demos as we showcased how we deliver insight about their messaging infrastructure.

This one goes out to all the developers waiting for the Splunk PHP SDK. Well, the wait has finally ended.

A public preview of PHP SDK 0.1.0 is now available on Github. While in its early stages, you can do a lot with this SDK. It allows you to run any saved searches or ad-hoc searches. It supports various search modes – normal, oneshot, blocking etc. giving you the control to run both synchronous as well as asynchronous searches.

Below are a few code snippets showing what you can do with the SDK:

Connect to Splunk

// Import Splunk.php
require_once 'Splunk.php';

// Create an instance of Splunk_Service to connect to a Splunk server
$service = new Splunk_Service(array(
    'host' =>

…

On July 19th, Bontouch and Splunk sponsored the first Stockholm Technology Forum Unconference. The purpose was to bring local software professionals together to network, share, and discuss. The theme was Big Data (what else?), and it was held at Bontouch’s offiices in Kungsholmen (one of the several islands making up Stockholm city).

If you are unfamiliar with what an unconference is, you can read the Wikipedia article about it. Basically, it’s attendee led. As an organizer, it can be disconcerting and worrisome.

Will people attend? Stockholm in the summer is known for sunny long days set among the water. The city is relatively deserted of locals, who are out vacationing.

Will we run out…

On the second Tuesday of each month, Splunkers in the Dallas / Fort Worth Metroplex area have been getting together on a regular basis to talk about all things Splunk. Seems the users are able to take advantage of spending just a couple hours with each other, trading notes about Splunk, helping each other solve problems with our Splunk deployments and configurations, and sharing a beer and pizza too.
If you are interested in attending now, please click this link below for details:

http://www.meetup.com/Splunk/Plano-TX

On the second Tuesday of each month, Splunkers in the Dallas / Fort Worth Metroplex area have been getting together on a regular basis to talk about all things Splunk. Seems the users are able to take advantage of spending just a couple hours with each other, trading notes about Splunk, helping each other solve problems with our Splunk deployments and configurations, and sharing a beer and pizza too.

BTW, we are 40 members and counting now!

Our next meeting will be held at the Splunk Office in Plano, Texas on Tuesday, June 12th @ 6:00p CST.

If the White House’s recent Big Data Research and Development Initiative is any indication, big data is a big deal for government. However, collecting, analyzing and reacting to large amounts of machine-generated data can prove to be challenging for agencies

Yesterday we teamed up with Bob Gourley from CTO Vision to host a Twitter chat on how government can make sense of it all. From data analysis for operational intelligence to log management for cyber defense, we covered a number of ways agencies can make the most of their data. Here are a few key takeaways from the discussion

• Determine how to deal with the data explosion. One of the most significant barriers to harnessing big data

…

Fellow Splunkers,

Thus begins my first blog post as an employee of a publicly traded company.  Given that, I would like to let you all know that [REDACTED - lstein].  Now that I have cleared the air, let’s move on.

It has never been more true: the more things change, the more they stay the same.  While Splunkers around the globe were partying like it was 1999, I was on the way to my second straight National Collegiate Cyber Defense Competition in San Antonio, Texas (aka the Alamo City).