Introduction to Splunk Secure Application

Shift your team from reactive security management to proactive defense. Splunk Secure Application unifies security and observability within Splunk Observability Cloud, eliminating the need for fragmented tools or additional agents.

Splunk Secure Application continuously scans code and detects runtime vulnerabilities and attacks in real time. It correlates security risks with application context (such as services, environments, and libraries) so that you can prevent exploits and ship secure code faster, without the constant firefighting.

Splunk Secure Application is an add-on for Splunk APM.

Key features

• Runtime vulnerability detection: Identify and prioritize exploitable vulnerabilities within your application code based on actual runtime reachability.

• Dynamic library discovery: Automatically generate a real-time inventory of executing third-party libraries and nested dependencies to eliminate visibility blind spots.

• Real-time attack detection: Continuously monitor application execution to detect live exploitation attempts and active threats as they happen in your runtime environment.

• Attack notifications: Configure and route notifications regarding active attacks directly to security solutions, including Splunk Cloud Platform and Splunk Enterprise Security, to accelerate cross-team incident response.

Requirements

• You are a Splunk Observability Cloud user with a Splunk APM license.

• You're using a Splunk Distribution of OpenTelemetry agent.

• You're using the Splunk Distribution of OpenTelemetry Collector or the community (upstream) collector as described in Step 2: Deploy a supported OpenTelemetry Collector.

Supported language frameworks

• Java