Splunk

Splunk is a database system designed for extracting structure and analyzing machine-generated data. It combines data from things like other databases, web servers, networks, etc. and then offers services to analyze the data, and produce dashboards, graphs, reports, and alerts that offer analysis of the data.

Checkpoints

Not Supported

Splunk supports the notion of checkpoints. When reading data and indexing, a checkpoint can be created to mark the data as being read or indexed.

Data Model

Array / Matrix

Splunk uses a flat file database model.

Joins

Not Supported

Splunk supports inner join, and outer join, but inner join is the default.

Indexes

Not Supported

Splunk indexes data by breaking them into events, based on the timestamp of the data. After breaking the data up into events, the events are passed through the indexing pipeline where additional steps are taken such as: breaking the events into segments so indexing and searching can be done efficiently, building data structures for the indexes, and writing the events out to disk.

Revision #8  | 
Splunk Logo
Website

http://www.splunk.com/

Tech Docs

https://docs.splunk.com/Documentation/Splunk/7.2.0

Developer

Splunk

Country of Origin

US

Start Year

2003

Project Type

Commercial

Written in

C++

Licenses

Proprietary

Wikipedia

https://en.wikipedia.org/wiki/Splunk

Revision #8  |