Integrations overview
LogSentinel SIEM can collect data from everywhere. The lists below include only the most popular vendors and products, but because of the flexibility of our collector, we can collect anything that generates logs:
Syslog in any variation (RFC 3164, RFC 5424; CEF, LEEF)
IPFIX/NetFlow
Text files in any variation (comma-separated, tab separated, fixed length columns, access log format, Linux audit log, JSON, XML) accessed in any fashion (ssh, shared drives, local)
Windows logs
Database tables in any RDBMS and any structure
Database-native audit logs for major vendors
Cloud services with RESTful APIs
Cloud integrations
Source type | Sources |
---|---|
Infrastructure-as-a-Service (IaaS) |
|
Identity and access management (IAM) |
|
Office and Cloud Storage |
|
General Software-as-a-Service (SaaS) |
|
Web conferencing |
|
Other |
|
On-premise integrations
Source type | Sources |
---|---|
Databases |
|
Firewalls |
|
Endpoint protection / antivirus |
|
Web servers |
|
VPN |
|
Identity and access management (IAM) |
|
Cloud access security broker (CASB) |
|
Misc |
|
Other | Any other application/service that has writes a log to syslog, text file, database or Windows log, or exposes it through RESTful API |
Interested in a SIEM Solution that combines log management, behavior analytics (UEBA), threat detection, and incident response into a complete security monitoring platform? Talk to us today!