User and Entity Behavior Analytics (UEBA)

Detect Unknown Threats and Anomalous Behavior using Machine Learning


Hackers can break into firewalls, send you e-mails with malicious and infected attachments, or even bribe an employee to gain access into your firewalls. Old tools and systems are quickly becoming obsolete, and there are several ways to get past them.

User and entity behavior analytics (UEBA) give you more of a comprehensive way to make sure that your organization has top-notch IT security, while also helping you detect users and entities that might compromise your entire system.



User and Entity Behavior Analytics, or UEBA, is a type of cyber security process that takes note of the normal conduct of users. In turn, they detect any anomalous behavior or instances when there are deviations from these “normal” patterns.


Splunk User Behavior Analytics Capabilities : 

  • Enhance Visibility and Detection
  • Accelerate Threat Hunting
  • Augment SOC Resources
  • Better Together: Splunk ES and Splunk UBA