Log Management

The Log Management module is able to manage log data and security-related events from any kind of data source. Adding IP sources the Log Management module automatically gathers and classify information to provide a clear overview of the security posture across the organization. The logs are stored encrypted and signed to ensure data integrity and be compliant with major regulations. Due to an ultra performing log ingestion engine, SGBox can collect a huge amount of security events from a lot of cybersecurity products (NIDS, firewall, AV, network devices, etc.), web application attacks and attempted information leaks that can be shown in a dynamic dashboard to facilitate an investigation.

 

Different Logs, FAST DATA ANALYSIS

 

Uncommon Simplicity

Data Integrity

Unlimited Log Format

Powerfully designed and intuitive log aggregation, tagging, filtering, and searching for effective troubleshooting. Drill-down events, starting from an overview of historical data by entering in detail to analyze the single event Strong encryption with asymmetric keys are used to grant efficient log encryption of stored data. Timestamp and sign are used to certify the integrity of data. Unlimited data volume can be stored without time limitations. SGBox is able to collect any kind of log data format. In case of unknown log formats, such as custom application, is simple to generate the appropriate patterns to recognize all the security events.