Hybrid SIEM solution combining real-time (event) log monitoring with comprehensive system health & network monitoring provides users with a complete picture of their servers and endpoints. The included security event log normalization & correlation engine with descriptive email alerts provides additional context and presents cryptic Windows security events in easy to understand reports that offer insight beyond what is available from raw events. EventSentry's NetFlow component visualizes network traffic, can detect malicious activity and offers insight into bandwith usage. Keeping track of Active Directory changes is easy with EventSentry's ADMonitor component that records all changes to AD & Group Policy objects and provides a complete user inventory to help identify obsolete accounts. Various integrations & multi-tenancy available.

Server Monitoring and Event Log Management for enterprise operations. ELM is a proven, premise based solution in high security industries and environments such as DOD, DOE, PSAPs, Finance and Healthcare. Real-time monitoring, alerting, and reporting is what we do. Smart Monitoring Software. Endless Possibilities.

Server File Activity Tracking - Audit who is creating, accessing, moving, and deleting your files and folders. Track file permission changes. Real-time alerts about critical file activities. Workstation File Activity Tracking - Audit who is copying files to USB or other removable drives. Track who is uploading files from a browser. Email alert when a removable device is connected. Active Directory Auditing - Keep audit logs and get real-time alerts of important Active Directory changes without dealing with SACLs or Windows Event Logs. Server Authentication Auditing - Track authentications into Windows Servers and Citrix sessions. Review all failed logon attempts. Workstation Logon/Logoff Tracking - Get visibility on workstation logons/logoffs, including locks, unlocks and password changes. Review all failed logon attempts. GPO Auditing - Track creation, deletion, and linking of Group Policy Objects. Alerts on specific events including Pattern alerting.

JumpCloud® Directory-as-a-Service® is Active Directory® and LDAP reimagined. JumpCloud securely manages and connects your users to their systems, applications, files, and networks. JumpCloud manages users and their systems – whether Mac, Linux, or Windows – and provides access to cloud and on-prem resources such as Office 365™, G Suite, AWS™ cloud servers, Salesforce™, and Jira® among thousands of others. The same login also connects users to networks and file shares via RADIUS and Samba, respectively, securing your organization’s WiFi and file server access. Leveraging cloud-based directory services, IT organizations can choose the best IT resources for the business enabling users to be as productive as possible.

EventLog Analyzer by Manage Engine is the industry's most cost-effective security information and event management (SIEM) software solution. This secure and powerful cloud-based solution meets all critical SIEM capabilities that include compliance reporting, log analysis, log aggregation, user activity monitoring, file integrity monitoring, event correlation, log forensics, log retention, and real-time alerting. By leveraging Manage Engine's EventLog Analyzer, users can prevent data breaches, mitigate sophisticated cyber-attacks, and identify the root cause of security incidents.

Today’s adversaries use mutation to avoid detection by traditional security tools, leaving security gaps that can lead to a costly data breach. EventTracker Endpoint Detection and Response (EDR) service enables proactive prevention against malware and advanced threats by detecting and blocking them as they unfold on servers and workstations. EDR enhances endpoint security effectiveness by reducing dwell time at all stages of the threat chain, including lateral movement. Our Managed SIEM/SOC service includes EDR to protect your critical endpoints and servers from Zero-day attacks and mutating malware. EventTracker EDR provides 24/7 monitoring of your network for insider threats and advanced attacks that evade anti-virus and firewalls. With real-time visibility and remediation, be confident that your network is defended, as you focus on your core business responsibilities.

Logsign has acquired the vision of strengthening the cyber defense of institutions since 2010, the year of its establishment. Logsign believes that cyber security is a teamwork and that security solutions have to be much smarter. In line with this target, Logsign provides continuous innovation, ease of use and smart solutions by taking into account the technology and necessities of all its stakeholders and it works as a teammate along with all its stakeholders. Along with Security Information and Event Management (SIEM) and Security Orchestration, Automation and Event Intervention (SOAR) solutions, it actively provides services for more than 500 medium and large scale companies and state institutions. Having won the awards of domestic and foreign authorities in the field of technology and cyber security such as Deloitte Technology Turkey Fast 50, Deloitte Technology EMEA Fast 500, Cybersecurity Excellence, Cyber Defense Magazine and Info Security Products Guide.

Go from data to business outcomes faster than ever before with Splunk. Splunk Enterprise makes it simple to collect, analyze and act upon the untapped value of the big data generated by your technology infrastructure, security systems and business applications—giving you the insights to drive operational performance and business results. Collect and index log and machine data from any source. Combine your machine data with data in your relational databases, data warehouses and Hadoop and NoSQL data stores. Multi-site clustering and automatic load balancing scale to support hundreds of terabytes of data per day, optimize response times and provide continuous availability. The Splunk platform makes it easy to customize Splunk Enterprise to meet the needs of any project. Developers can build custom Splunk applications or integrate Splunk data into other applications. Apps from Splunk, our partners and our community enhance and extend the power of the Splunk platform.

ManageEngine is a software business formed in 1996 in the United States that publishes a software suite called O365 Manager Plus. O365 Manager Plus includes training via documentation, live online, webinars, and in person sessions. The O365 Manager Plus product is Windows, and SaaS software. O365 Manager Plus offers a free version, and free trial. O365 Manager Plus includes business hours, and online support. O365 Manager Plus is data loss prevention software, and includes features such as compliance management, dashboard, exceptions management, internal controls management, and issue management. Product pricing starts at $345.00/year/user. Alternative competitor software options to O365 Manager Plus include JumpCloud DaaS, able, and EventLog Analyzer.

AlienVault is a software company and offers a software title called AlienVault USM. AlienVault USM offers training via documentation, live online, webinars, and in person sessions. AlienVault USM offers a free version, and free trial. AlienVault USM is IT security software, and includes features such as intrusion detection system, vulnerability scanning, and web threat management. With regards to system requirements, AlienVault USM is available as Windows, and SaaS software. Costs start at $3.00/one-time. AlienVault USM includes business hours support, and online support. Some alternative products to AlienVault USM include EventLog Analyzer, EventTracker, and Enginsight.

Founded in 1996, ManageEngine is a software organization based in the United States that offers a piece of software called Log360. Log360 offers business hours, and online support. Log360 features training via documentation, live online, webinars, and in person sessions. The Log360 software suite is Windows software. Log360 is GDPR compliance software, and includes features such as AI / machine learning, behavioral analytics, incident management, and vulnerability scanning. Log360 offers a free version, and free trial. Some competitor software products to Log360 include Splunk Enterprise, Logsign, and EventLog Analyzer.

Founded in 2017, Enginsight is a software organization based in Germany that offers a piece of software called Enginsight. Enginsight offers business hours support. Enginsight features training via documentation, webinars, live online, and in person sessions. The Enginsight software suite is SaaS, and Windows software. Enginsight is network monitoring software, and includes features such as application security, behavioral analytics, endpoint management, intrusion detection system, and vulnerability management. Software pricing starts at $12.99/month. Enginsight offers a free trial. Some competitor software products to Enginsight include Splunk Enterprise, LogicMonitor, and EventLog Analyzer.

DNIF is a software business formed in 2002 in India that publishes a software suite called DNIF. DNIF includes training via documentation, and webinars. The DNIF product is SaaS, and Windows software. DNIF offers a free version, and free trial. DNIF includes online, business hours, and 24/7 live support. DNIF is cybersecurity software, and includes features such as AI / machine learning, behavioral analytics, incident management, and whitelisting / blacklisting. Product pricing starts at $84.00/month. Alternative competitor software options to DNIF include Splunk Enterprise, Log360, and Logsign.

SearchInform SIEM is a system for collecting and analyzing real-time security events, identifying information security incidents and responding to them. The system accumulates information from various sources, analyzes it, records incidents and alerts the designated staff.

If you had to invent the perfect SIEM from scratch it would combine a rules-free engine and a voluminous and continually updated database of threats. Well, the dream SIEM is here today. empow uses its proprietary AI and natural language processing to read the minds of attackers and determine the intent of each kernel of IP data. This power is now integrated with Elastic’s database and search capabilities. Think of it as an integrated “i-SIEM empowered by Elastic" - bringing enterprises a single place to manage all of their IT and data security functions. It’s a scalable data lake solution, with empow’s SIEM serving as an active infrastructure brain that detects, confirms and prevents attacks before they do harm.

Founded in 2000, Rapid7 is a software organization based in the United States that offers a piece of software called InsightIDR. InsightIDR offers business hours, and online support. InsightIDR features training via documentation, live online, and in person sessions. The InsightIDR software suite is SaaS software. InsightIDR is endpoint detection and response (EDR) software, and includes features such as behavioral analytics, Malware/Anomaly detection, and remediation management. InsightIDR offers a free trial. Some competitor software products to InsightIDR include Splunk Enterprise, EventTracker, and EventLog Analyzer.

Founded in 1982, HelpSystems is a software organization based in the United States that offers a piece of software called Powertech Event Manager. Powertech Event Manager offers online, business hours, and 24/7 live support. Powertech Event Manager features training via documentation, webinars, and live online. The Powertech Event Manager software suite is SaaS, and Windows software. Powertech Event Manager is log management software, and includes features such as application security, behavioral analytics, compliance reporting, forensic analysis, log management, network monitoring, real time monitoring, threat intelligence, and user activity monitoring. Powertech Event Manager offers a free trial. Some competitor software products to Powertech Event Manager include EventLog Analyzer, Logsign, and Splunk Enterprise.

ManageEngine is a software business formed in 1996 in the United States that publishes a software suite called EventLog Analyzer. EventLog Analyzer includes training via documentation, webinars, and live online. The EventLog Analyzer product is Windows software. EventLog Analyzer offers a free version, and free trial. EventLog Analyzer includes online, and business hours support. EventLog Analyzer is compliance software, and includes features such as CPU monitoring, database servers, event logs, history tracking, scheduling, user activity monitoring, and virtual machine monitoring. Alternative competitor software options to EventLog Analyzer include EventLog Analyzer, EventSentry, and EventTracker.

Why Snare? Great data analytics requires great data collection. When it comes to protecting your company from cyber threats, the devil is in the details. Great analytics requires great data, and great data requires great data collection. This is why log collection cannot be an afterthought for your organization as it can be for too many security providers. So we built Snare with an obsessive focus on log collection. Companies all around the planet choose Snare for their log collection and monitoring for this very reason, even when they choose another vendor for other aspects of their SIEM.

Founded in 2003, LogRhythm is a software organization based in the United States that offers a piece of software called LogRhythm Enterprise. LogRhythm Enterprise offers online, and business hours support. LogRhythm Enterprise features training via live online, and in person sessions. LogRhythm Enterprise is SIEM software, and includes features such as behavioral analytics, endpoint management, file integrity monitoring, forensic analysis, log management, and network monitoring. Some competitor software products to LogRhythm Enterprise include EventLog Analyzer, Logsign, and Splunk Enterprise.

BlackStratus is a software business formed in 1999 in the United States that publishes a software suite called SIEMStorm. The SIEMStorm product is SaaS software. SIEMStorm includes online, and business hours support. SIEMStorm is SIEM software, and includes features such as compliance reporting, and network monitoring. Alternative competitor software options to SIEMStorm include EventLog Analyzer, Logsign, and ELM Enterprise Manager.

Ropig is a software business in the United States that publishes a software suite called Ropig. The Ropig product is SaaS software. Ropig offers a free version. Ropig includes online, and business hours support. Ropig is issue tracking software. Alternative competitor software options to Ropig include BigPanda, Naverisk RMM & PSA, and SysAid.

RSA Security is a software organization based in the United States that offers a piece of software called RSA NetWitness Logs and Packets. RSA NetWitness Logs and Packets features training via live online, and in person sessions. The RSA NetWitness Logs and Packets software suite is SaaS software. RSA NetWitness Logs and Packets is SIEM software, and includes features such as behavioral analytics, compliance reporting, log management, network monitoring, real time monitoring, and threat intelligence. Some competitor software products to RSA NetWitness Logs and Packets include EventLog Analyzer, Logsign, and Splunk Enterprise.

Fortinet is a software organization based in the United States that offers a piece of software called FortiSIEM. FortiSIEM offers online, and business hours support. The FortiSIEM software suite is SaaS software. FortiSIEM is SIEM software, and includes features such as compliance reporting, log management, real time monitoring, and threat intelligence. Some competitor software products to FortiSIEM include EventLog Analyzer, Logsign, and Splunk Enterprise.

IBM is a software business formed in 1911 in the United States that publishes a software suite called IBM QRadar SIEM. The IBM QRadar SIEM product is SaaS, Mac, and Windows software. IBM QRadar SIEM is SIEM software, and includes features such as behavioral analytics, endpoint management, network monitoring, real time monitoring, threat intelligence, and user activity monitoring. Alternative competitor software options to IBM QRadar SIEM include EventLog Analyzer, Logsign, and Splunk Enterprise.