A Quick Demo of Splunk log analyzer  

Splunk is to search, monitor and analyze machine generated data by applications, systems and IT infrastructure at scale via a web style interface. Splunk captures indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations. Splunk aims to make machine data accessible across an organization and identifies data patterns, provides metrics, diagnoses problems and provides intelligence for business operation. It is a perfect log analyser.

Splunk offer its software in two license type, one is enterprise license for companies and large organizations, and another one is free license designed for personal use. The freeware version is proprietary software, not free software is limited to 30 days trial period and 500MB of data a day. First we need to register with (www.splunk.com) then allow users to download.  

For installing splunk on windows with the graphical user interface (GUI) based installer.  Launch splunk in a default web browser. Like ( http://localhost:8000) local host meaning this computer.

First login username “admin” and password “changeme”. We will change the default password and create a new password.

Here, We will walk through a demo

First Login Page: enter the username and password

Home Page:

Click àAdd Data à Choose Data Type

(In my case) I select àwindows event logs à Collect Windows Event logs from this splunk server à Next àSelected logs (Application, Security, Setup, System, Internet Explorer,etc,...)à Save

Click àStart Searching

All indexed Data (In Live Dashboard)

that's it.

Link : www.splunk.com