SIEM System Use Cases
Working on LogRhythm - Cloud SIEM project. LogRhythm's SIEM solution combines enterprise log management, security analytics, user entity...Read More
Showing posts with label SIEM. Show all posts
Showing posts with label SIEM. Show all posts
The Rocket-fast Syslog Server - Rsyslog Client and Server Configuration
Rsyslog is an Open Source logging program, which is the most popular logging mechanism in a huge number of Linux distributions. It's als...Read More
Easily Deploy ELK Stack into CentOS 7
The Elastic Stack — formerly known as the ELK Stack — is a collection of open-source software produced by Elastic which allows you to sear...Read More
Using NXLog to Collect Windows Event Logs
There are a lot of syslog collectors for Windows, but when it comes to stability and features, NXlog has the best chances to fulfill all the...Read More
Forwarding Windows Event Logs to Syslog Server (Kiwi Syslog)
Centralizing your logs saves time and increases the reliability of your log data, especially for Windows machines. When Windows log files a...Read More
Gartner Magic Quadrant for SIEM Products (2018,2017,2016,2015,2014,2013,2012,2011...)
Gartner defines SIEM as a technology that aggregates data produced by security devices, network infrastructure and systems, and application...Read More
ArcSight SIEM Logger Web, Search Examples, Use Case Reports
ArcSight Logger is one of products from Micro Focus SIEM platform. It streams real-time data and categorizes them into specific logs and ea...Read More
Install Latest Splunk 7.2.0 into Ubuntu and CentOS
Installing Splunk 7.2.0 into Ubuntu is super easy. I had a video to introduce how to install Splunk in a windows server in my previous post....Read More
Splunk Tips and Tricks
Splunk Installation: On Google Cloud Windows 2016 VM On Prem Linux CentOS 7: Read More
Configure Netflow on network devices for PRTG Netflow Monitoring
Netflow is a feature first introduced into Cisco routers and switches and then flow concept has been widely accepted by other network produc...Read More
Using PRTG SNMPv3 Monitoring Juniper SRX 240H Alarm andTemperature
One of our SRX240H is having temperature problem. Whenever the temperature reached 50 Celsius degree, system alarm will be on. Alarm email s...Read More
Archive Juniper STRM (IBM Qradar) Logs to remote server
Our Juniper STRM is running out of space after receiving more and more logs from Check Point management server and Juniper NSM. Since my ST...Read More
Installation Steps of LOG Storm Free Virtual SIEM Appliance
I was reading the Top 47 Log Management Tools from ProfitBricks' blog. During quick scanning the key features and cost, I decided to gi...Read More
Forwarding Checkpoint Management Server Firewall logs to an external syslog server STRM/Qradar SIEM
There are two ways to integrate STRM with Check Point Firewalls devices. 1. Using Syslog On Check Point management station, you can follo...Read More
Forward Logs from Checkpoint SmartCenter Management Server and Juniper NSM / IDP to Syslog Server
Two KBs regarding how to collect log from Checkpoint and Juniper: 1. Configuring SmartCenter to send logs to syslog server Solution ID:...Read More
Subscribe to:
Posts
(
Atom
)
