Aside from the conventional features a log management tool should have, EventLog Analyzer goes one step further by giving you actionable data in the form of graphical reports. The FireEye reports in EventLog Analyzer focus on threats spotted by the endpoint security software. You can view separate reports on events causing infections, objects carrying malware, and web infections to help you narrow down areas where you need to beef up security. Additionally, you can view a list of the most commonly found severities, source and destination IP addresses, and the most targeted ports.
Custom FireEye reports
Need a report that's not available by default? Don't worry! EventLog Analyzer has you covered. With EventLog Analyzer, you can build custom reports from the log data at hand. All you need to do is specify the criteria based on which the new report will be built.
Scheduling FireEye reports
Your organization might have a policy that requires you to review the previous week's network reports every Monday; reviewing your network's reports at regular intervals is a good practice. With EventLog Analyzer, you can automate report generation for a specified time period, and choose which email you'd like the scheduled reports to be automatically sent to. This way, you can easily view reports without having to log in.