Splunk is an engine for collecting, indexing, querying, and reporting machine data from any source. It allows users to analyze log files, metrics, databases, sensors, and other unstructured or polystructured data. Splunk can serve as a backend, frontend, and middleware platform with an advanced query language for analytics and reporting, and it integrates with other systems through APIs and SDKs.

1. Copyright © 2015 Splunk Inc.
Splunk at the Emirates
Travel Hackathon
Hal Rottenberg, Developer Evangelist

2. Splunk is…
● An engine for machine data
– collect
– index
– query
– report
● ANY DATA!

3. Splunk Enterprise 6.3
3
Indexes Any Data from Any Source
AlertsWire Data Metrics ChangesScriptsConfiguration
s
Log Files
DatabasesNetworks Servers
Virtual
Machines
Smartphones
and Devices
Custom
Applications
Security
Tickets
Web
Server
Sensors

4. What is Machine Data?
● Any text-based data
● Unstructured / Polystructured
● Examples
– Log files
– Metrics
– CSV
– JSON
– Totally arbitrary shit
4

5. Why use Splunk Today?
● Easy to install, web-based analytics platform
● Splunk can be your back-end, front-end, middleware
● Advanced query language: stats, analytics, reporting
● REST API, SDKs for Java, Javascript, Python, Ruby, C#
● Rich web platform capabilities
5

6. Resources
● Docs and more:
https://splunk.box.com/emirates-hackathon
● Twitter: @halr9000
● These slides: http://slideshare.net/halr9000
6

7. Demo