Splunk Tutorial 01: What is Splunk?

What is Splunk?

Is it a Business Intelligence (BI) tools? No. It is more than a traditional BI tools.


Platform | Data | Primary Sources | Real Time
Splunk | Unstructured (included Machine Data) & Structured | IT Systems | Close to Real Time
BI Tools | Structured | Databases | Usually No


Traditional BI tools summarise data from database and them produce the report reporting the fact and follow by some kind of prediction . However,in the real world, a lot of data is not stored in the database or in a structure format. For example server log, they are usually stored in a machine data format. There are simply stored as a machine data and usually no one will have look into those data until it go into archive or something happened.

This is where Splunk work in. It is an organisational intelligence and read machine data, visualise it, report it, investigate it, and also provide alert.

When it say Data, another difference between Splunk and traditional is Splink also analysis machine data.

