Sumo Logic är en molnsäkerhetsanalysplattform som tillhandahåller säkerhetsinformation för dina mikrotjänster, hybrid- och multimolnmiljöer. Sumo Logic kan vara ditt första SIEM-moln, ersätta ditt gamla SIEM eller verka tillsammans med din befintliga SIEM-lösning. Sumo Logic levererar en molnbaserad plattform för maskindataanalys i realtid som ger kontinuerlig intelligens. Lär dig mer om Sumo Logic

Datadog Security Monitoring can detect threats in real time and investigate security signals across your infrastructure, applications, and network. Datadog provides out-of-the-box threat detection & security analytics solutions based on the full set of monitoring data from more than 400+ turn-key, vendor-supported integrations. Datadog analyzes all of your data without the cost of indexing and retaining everything, so you can detect threats across the full stream of ingested observability data. Lär dig mer om Datadog Cloud Monitoring

Cloud Platform is a set of modular cloud-based services that allow you to create anything from simple websites to complex applications.

Trusted by 92 of the fortune 100, Splunk is a customizable data analytics platform that empowers you to investigate, monitor, analyze and act. From IT to security to business operations, Splunk is the data-to-everything platform that enables you to take action in real-time. With Splunk, you can predict and prevent IT problems, streamline your entire security stack, minimize unplanned downtime, and explore and visualize business processes for increased transparency all in one platform.

Elasticsearch är en sök- och analysmotor som är baserad på Apache Lucene och som kan lagra data och söka i denna data i princip i realtid. Elasticsearch, Logstash, Kibana och Beats utgör ”Elastic Stack” som utvecklats av Elastic. Elasticsearch med värd (Elastic Cloud) tillhandahålls också.

JumpCloud is an open directory platform for secure, frictionless access from any device to any resource, anywhere. JumpClouds mission is to Make Work Happen, providing simple, secure access to corporate technology resources from any device, or any location. The JumpCloud Directory Platform gives IT, security operations, and DevOps a single, cloud-based solution to control and manage employee identities, their devices, and apply Zero Trust principles.

Logz.io är en ledande plattform för molnobservation som gör det möjligt för ingenjörer att använda ett av marknadens bästa verktyg med öppen källkod utan de komplexa utmaningarna i driften, hanteringen och skalningen av dem. Logz.io erbjuder tre produkter: Logghantering byggd på ELK, infrastrukturövervakning baserad på Grafana och ett ELK-baserat SIEM-moln. Dessa erbjuds som en komplett funktionstjänst gjord för att hjälpa ingenjörer att övervaka, felsöka och säkra sina distribuerade molnarbetsflöden mer effektivt.

Sematext Cloud is an all-in-one observability solution for software-based companies that provides key insights into front-end and back-end performance. Sematext encompasses infrastructure, real user & synthetic monitoring, transaction tracing, and log management. Sematext Cloud also offers flexible app-scoped pricing based on plan, volume, and retention selection, where each App can have a different plan, volume, and retention, giving you lots of control over costs with no overage fees.

Netsurion gör det möjligt för organisationer att framgångsrikt förutsäga, förebygga, upptäcka och reagera på cybersäkerhetshot. SIEM-plattformen EventTracker förenar maskininlärning, beteendeanalys och säkerhetsorganisering. Säkerhetstjänsten EventTracker SIEMphonic levererar en samförvaltad SIEM-tjänst som drivs av SOC 24/7. EventTracker EDR skyddar också kritiska slutpunkter från nolldagsattacker och muterande skadlig kod.

Hybrid SIEM solution combining real-time (event) log monitoring with FIM, SW/HW inventory and more for an integrated approach to increase network security. Unique security event log normalization & correlation engine with descriptive email alerts provides additional context and presents cryptic Windows security events in easy to understand reports that offer insight beyond what's available from raw events. A dynamic release cycle constantly adds features for timely challenges like Ransomware.

Logsign is a Security Information and Event Management (SIEM) solution which provides security analyses and compliance to regulations on a single platform. Founded in 2010, Logsign believes that cyber security is a teamwork and that security products have to be much smarter. With this conviction, it focused its endeavours on Security Intelligence and SOC solutions. It actively provides services for more than 500 medium and large scale firms and governmental agencies.

AlienVault Unified Security Management (USM) delivers a unified, simple and affordable solution for threat detection and compliance. Powered by the latest AlienVault Labs Threat Intelligence and the Open Threat Exchange the largest crowd-sourced threat intelligence exchange, USM enables mid-size organizations to defend against modern threats.

SureLog Security Information and Event Management (SIEM) platform analyzes log event data in real time to detect and prevent security attacks. By consolidating events from all log sources, SureLog correlates and aggregates events into normalized alerts to spot cyber security threats and instantly notifies your IT & security teams. SureLog SIEM is available on premises and in a cloud environments

Firewall Analyzer is an agent less log analytics and configuration management software, which analyzes logs from firewalls and generates real time alert notifications, security and bandwidth reports. The solution is a vendor-agnostic software and supports more than 50 plus firewall vendors. It also empowers administrators by providing comprehensive reports about the security events and in turn they can take steps to mitigate the security.

Intelligent solution that monitors your network in order to detect and prioritize threats through machine learning and AI algorithms.

Log360 är en allsidig SIEM-lösning som hjälper företag i alla storlekar att bekämpa hot och minska attacker med sin hotinformation, händelsekorrelation, övervakning av filintegritet, granskning av nätverksenheter och övervakning av användaraktivitet. Lokalt, i molnet eller både och - Log360 täcker det. Den är enkel att driftsätta, har en centraliserad konsol för att hantera flera miljöer och licensmodellen är att man bara betalar för det man använder .

SilverSky Managed Security Services monitors and manages your UTM devices, servers and endpoints around the clock giving you peace of mind that your devices are continually updated and patched and your organization is monitored by our expert Security Operations Center analysts. SilverSky is uniquely qualified to help small and mid-sized businesses in regulated industries meet their security and compliance needs.

User behavior analytics and vulnerability management solution that helps identify internal and external threats.

Delivers comprehensive Security Information and Event Management (SIEM) capabilities in a highly affordable, easy-to-deploy virtual appliance. Security Event Manager automates and simplifies the complex task of security management, operational troubleshooting, and continuous compliance, enabling IT pros to immediately identify and re-mediate threats and vital network issues before critical systems and data can be exploited. SIEM software has never been easier to use or more affordable to own!

Cybersecurity management tool that helps businesses detect & overcome cyber threats through machine-based analytics, UEBA & more.

DNIF deploys pre-built SIEM rules to detect known attacks effortlessly. It learns from trend profiles to handle unknown attacks. It augments your existing SIEM with automation and capacity. It builds logic to detect any deviation in the wild and identifies cause using machine learning models designed to attribute risk. It can ingest logs from all types of devices. All components are designed to scale up and down seamlessly without breaking operations either by load balancing or by clustering.

SIEM solution that helps businesses with performance, security, and availability monitoring to detect and remediate security threats.

EventLog Analyzer är ett verktyg för nätverkssäkerhet som samlar hotdetektering och efterlevnadskontroll i en konsol. Den kan korrelera olikartade händelser som inträffar i ditt nätverk. Den har en inbyggd hotinformations- och incidenthanteringsplattform, erbjuder fördefinierade granskningsrapporter för uppföljning av aktivitet som i databaser och på webbservrar, Windows-enheter, nätverksperimeterenheter osv. Den hjälper också till att uppfylla efterlevnadsbestämmelser som PCI DSS, SOX, HIPAA, FISMA och GDPR.

Enginsight uses leading-edge IT architecture to provide an innovative, autonomous IT security & monitoring solution for the entire IT infrastructure. It covers the entire process from network analysis and vulnerability testing to automated penetration testing and concrete action for the admin. All data is monitored LIVE, supported by neural networks (AI), so that the admin always has control over the security of the entire system with a minimum of time.

SOC Prime Threat Detection Marketplace® (TDM) is a SaaS content platform that aggregates over 65,000 SIEM & EDR rules, parsers and search queries, Snort and YARA rules designed to work directly in the company¿s preferred SIEM environment, including Microsoft Azure Sentinel, Sumo Logic, Humio, the Elastic Stack, Splunk, ArcSight, QRadar, and more. TDM also delivers content using Sigma, a generic signature format, which can be used across various SIEM systems and streamed via an API on the fly.

Blumira's end-to-end platform offers both automated threat detection and response, enabling organizations of any size to more efficiently defend against cybersecurity threats in near real-time. It eases the burden of alert fatigue, complexity of log management and lack of IT visibility. Blumira's cloud SIEM can be deployed in hours with broad integration coverage across cloud, endpoint protection, firewall and identity providers including Office 365, G Suite, Crowdstrike, Okta, Palo Alto &more.

Exabeam is SIEM that helps security operations and insider threat teams work smarter, allowing them to detect, investigate, and respond to cyberattacks in 51 percent less time. Security organizations no longer have to live with missed distributed attacks, unknown threats, and manual investigations and remediation. With the modular Exabeam Security Management Platform, analysts can use behavioral analytics to detect attacks, automate investigation and incident response, and reduce storage costs.

InsightIDR is your threat detection & response solution. Find & respond to all of the top attack vectors behind breaches: phishing, malware, and the use of stolen passwords. InsightIDR natively collects data from your endpoints, security logs, & cloud services. Apply user and attacker behavior analytics to your data to find intruder activity at each step of the attack chain. Unify your security data. Detect before things get critical. Respond 20x faster with visual investigations & automation.

Event Manager is a cybersecurity insight and response platform that ensures critical events get the attention they require. Events are translated into an easy-to-interpret format, and critical events are separated from the noise in real time. This enables security analysts to act quickly and decisively, even without specialized knowledge of every technology in your environment. A full audit trail makes it easy to meet compliance requirements.

Security Information and Event Management solution that helps security teams detect cyber threats and accelerate incident response.

Open-source, cloud-native SIEM to continuously detect threats with log data, improve cloud security posture, and power investigations.

CybrHawk SIEM ZTR provides all the critical tools: IDS, intelligence risk, behavior, machine learning, cloud info, MDR, EDR, Threat Hunting and memory injection detection. The goal is to provide the entire enterprise with full and total control systems and is the only SIEM in the market that offers Memory Injection in its platform. On the first day, the organization inherits ready-to-use tracking software. Advanced Visibility.

The WatchWave Platform conduct full analyzes and act as a focal point for data received from the WatchWave agents, processing events trough decoders and rules, and using next generation threat intelligence to look for latest released IOCs (Indicators Of Compromise) WatchWave provides a complete view of all the relevant data from the organization's systems, devices, and their interactions with real-time security insights for immediate action that scales the resources and reduces exposure to risk.

UTMStack provides complete visibility over the entire organization from a centralized management dashboard. All solutions in the stack are fully integrated and report to a central database: 1. Log Management (SIEM) 2. Vulnerability Management 3. Access Rights Auditor 4. Incident Response 5. HIPS/NIPS, Endpoint Protection 6. Dark Web Monitoring You can monitor almost any cloud environment or SaaS application with ready to use Integrations. UTMStack is currently integrated with Azure, AWS, etc.

CloudJacketX managed security-as-a-service platform combines ongoing network security assessments with managed detection and response (MDR) services, an advanced SIEM solution, and a patented intrusion detection and prevention system (IDS/IPS), all supported by real-time response from 24/7 security operations centers (SOCs).

The LogPoint SIEM solution intelligently extracts events and incidents from the billions of logs existing in any IT infrastructure of any size. Filtered and carefully correlated real-time results are displayed in easy to manage dashboards that can be configured based on the specific roles and responsibilities of each user.

LogSentinel next-gen SIEM offers simplicity and predictability. By leveraging the latest innovations like blockchain and AI, it helps organisations of all kinds to eliminate their blind spots and reduce the time and cost of incident detection and investigation. LogSentinel SIEM offers unique security innovation: privacy of logs, audit log integrity, unlimited retention, full visibility. Our zero-setup cloud SIEM, our open-source agent, and built-in CASB can handle every system and every setup.

The Snare suite of security and compliance products range from small footprint, highly effective device and network logging and log-management tools through to advanced IT infrastructure threat protection solutions. Originally developed by former Australian defence IT personnel, the Snare advanced threat intelligence suite is used by thousands of organisations around the world for real-time monitoring of IT infrastructure.

Network security solution that provides managed security service providers with advanced vulnerability correlation and real-time attack visualization capabilities.

Simplify security risk and compliance management with powerful correlation engine, big data analytics, and enhanced reporting.

Software-based solution suite that makes it easier to identify and respond to network attacks and suspicious activity by proactively correlating security events and managing logs.

For SaaS developers: stop being interrupted by alerts. Events are prioritized and filtered to your preferences.

O365 Manager Plus is a reporting, auditing, monitoring, management, and alerting solution for Office 365. With this solution, easily administer Exchange Online, Azure AD, Skype for Business, OneDrive for Business, and other Office 365 services from one place. Comply with industrial mandates with detailed audit reports. Create custom roles for cross-tenant and domain-based delegation.Monitor the Office 365 setup 24X7 and receive real-time emailnotifications when service degradation occurs.

The SOC set up and/or operated by ITrust makes it possible to optimize your cyber-protection while ensuring the availability of your services at the best possible cost, while respecting the regulatory framework in terms of compliance. Thus the graphical interface, clear and customizable, allows the user to have a precise vision of what is happening and to supervise all the security of servers, routers, applications, databases, websites....

Security Scanner for Wordpress Installations to test vulnerabilities using custom technology to check Wordpress websites

Built on big data, Securonix Next-Generation SIEM combines log management, user and entity behavior analytics (UEBA), and security incident response into a complete, end-to-end security operations platform. It collects massive volumes of data in real-time, uses patented machine learning algorithms to detect advanced threats, and provides artificial intelligence-based security incident response capabilities for fast remediation.

Beyond the traditional SIEM solution, TraceAlert includes our Managed Security Operations Center that manages the SIEM 24/7/365. Only true threats will be reported to you for remediation.

Multi-platform logfile data management - across Windows, UNIX/Linux, OpenVMS and IBM i as well as your layered applications

Collects events from event logs of servers and workstations, network active equipment, access control, authentication, antiviruses and virtualization environments. Analyzes data, detects incidents and performs real-time incident reporting. Identifies virus epidemics and separate virus infections, attempts to get unauthorized access to confidential information, errors, and failures in information systems operation, credentials fraud, critical events during the security system operating.

Delivers actionable intelligence and integrations required for you to prioritize, investigate, and respond to threats.