The Splunk platform helps organizations search, analyze, monitor, and visualize the machine-generated data gathered from their websites, applications, sensors, and devices. Splunk makes it possible to use any kind of data for real-world action. Splunk Enterprise Security (Splunk ES) is a security information and event management (SIEM) solution that enables security teams to quickly detect and respond to internal and external attacks, to simplify threat management while minimizing risk, and safeguard businesses.
Salt Security integrates with Splunk to deliver real-time API security incident alerts and attacker data to Splunk SE. Salt correlates all attack activity from the same user into a consolidated attack timeline. Salt sends this attack timeline to Splunk SE, giving security teams a clear view of an attack's steps and sequence to reduce investigation times and help teams stop attackers in their tracks.