Security data
is everywhere.

Query is a security data mesh platform that lets you access, use, and get answers from security-relevant data, wherever it is stored.

(And we plug into Splunk.)

Put yours to work.

Query Demo Splunk App Demo

Query Federated Search

The Query platform — federated search, fast data source connectivity, automatic data enrichment, and data normalization.

Query Federated Search for Splunk

The Query for Splunk App — expand the reach of Splunk to data housed in Security and IT platforms, SaaS tools, lakes, and cloud storage — normalized to OCSF at the time of search — without increasing Splunk costs.

Query is the first security solution that allows security teams to:

Control where and how to store data, reducing storage costs and eliminating expensive data engineering and data pipelining projects.

Quickly access data from all sources with a single search, including non-security data sources and unstructured data in cloud storage.

Supercharge your security investigations with a single view of OCSF-normalized and enriched search results from across your data sources.

Resources