New Features
Stop more attacks with correlation
The enhanced correlation interface contains over thirty predefined attack rules, including those for ransomware, brute force, and more. You can now correlate logs from multiple log sources and create rules to suit your business environment.
Understand how correlation can help you by requesting a personal feature demo.
Learn moreAugmented threat intelligence
The enhanced threat intelligence platform comes with a built-in STIX/TAXII feed processor. Get real-time alerts for suspicious traffic in your network and outbound connections to malicious domains and callback servers.
Find out how the feature works with our free solution brief.
Learn moreBuilt-in incident management console
Track the response and resolution process of incidents by assigning every alert to a specific administrator. Keep track of incident tickets with the built-in ticketing option, or raise tickets in external help desk tools - ServiceDesk Plus and ServiceNow.
Find out how the feature works with our free solution brief.
Learn moreNeed a feature?
Let us know and we will roll it out as soon as we can!
Roadmap
We are constantly looking to add new features to meet market requirements and to improve usability. Why are we disclosing this? Because we value your inputs!
Out-of-the-box support for more log formats
The number of log sources and log formats supported by EventLog Analyzer out of the box will continue to increase this year with expected additions like MySQL, SNMP traps, H3C, and many more.
Remote deployment of correlation engine
Users will be allowed to deploy the powerful correlation engine in a separate remote server, offering them more flexibility. This will allow you to allocate more computing power to the module, which has the potential of doubling its operational efficiency.