Log360, a comprehensive SIEM tool, helps you resolve numerous IT security challenges including log management, Active Directory auditing, public cloud log management, meeting compliance requirements, protecting confidential data from security breaches, and much more through a simple and easy-to-use interface.
This integrated solution has six components:
ADAudit Plus, the Active Directory auditing component of Log360, helps you to monitor changes in the Active Directory environment. This component collects logs of all the changes happening in the AD infrastructure and processes them to generate reports and trigger alerts.
ADAudit Plus comes with prepackaged reports that help you to track user logon actions, changes to GPOs, OUs, groups, computers, and domain policies. It also provides real-time email or SMS notifications upon the occurrence of any anomalous change activities in your AD environment.
With this component,
And that's not all. Learn more about this component right here.
EventLog Analyzer centrally collects, normalizes, analyzes, correlates and archives log data from sources across the network. This component can process log data from 700+ sources including applications such as IIS web servers, Apache web servers, Oracle, MS SQL, vulnerability scanners, and more. In fact, this component can process your in-house or custom application logs with its Universal Log Parsing and Indexing (ULPI) technology.
This component provides,
And, this is a non-exhaustive list. Learn more about EventLog Analyzer.
O365 Manager Plus is a comprehensive Office 365 tool to manage Exchange Online and Azure Active Directory from one place. It provides an exhaustive list of preconfigured reports, audits all user and admin activities, and lets you create custom alerts for critical events in your Office 365 setup to get real-time email alerts.
With this component,
Exchange Reporter Plus is a change auditing solution that allows you to monitor email traffic, audit your Exchange event logs, and receive real-time alerts about critical changes that require your attention.
This Log360 module allows you to:
Click here to know more about Exchange Reporter Plus.
Log360 UEBA, powered by Machine Learning (ML), detects anomalies by recognizing subtle shifts in user activity. It helps you identify, qualify, and investigate threats that might otherwise go unnoticed, by extracting more information from your logs to give better context.
The capabilities of Log360 UEBA include,
DataSecurity Plus, is a data visibility and security solution, capable of data discovery, file storage analysis, and Windows file server auditing.
The capabilities of Data Security Plus include,
The ADManager Plus component of Log360 provides over 200 out-of-the-box reports on Active Directory users,computers, groups, OUs, Group Policy Objects, file server permissions, and more to help you visualize key security configurations in Active Directory.
Cloud Security Plus is a public cloud log management tool for Amazon Web Services and Microsoft Azure. With comprehensive reports, easy search mechanism, and customizable alert profiles, it enables you to track, analyze, and react to events happening in your cloud infrastructure. Thus facilitating the smooth functioning of your business in a secure and protected cloud.
This Log360 component offers:
A number of predefined reports on events that occur in Amazon EC2, WAF, RDS, STS, EBS, VPC, ELB, and S3.
Reports provide insights on user activity and any changes made to network security groups, virtual networks, DNS zones, virtual machines, databases, and storage accounts.
Find what you're looking for with the smart log search engine and the advanced search options provided.
Get notifications via email when unusual activities and other security threats occur.
Click here to know more about Cloud Security Plus.