We build various add-ons for various SIEM systems which currently don't exist. Our vast knowledge with SIEM systems, Logs and Incident response allows us to create interactive and informational add-ons. Simple Integration, simple usage and control to provide maximum data for your SIEM/SOC team.
Here are some of our add-ons:
Arcsight – Incapsula API
- Incapsula integration via API
- Extract Incapsula Logs in REAL TIME
- Immediate Parsing
Arcsight – Google Map Implementation
- Plot Events on an online / offline (roamed) Google map application.
Arcsight – ATM / FRAUD
The ATM / Fraud Package enables Fraud monitoring across Appropriate Applications , the package includes:
- Min fraud integration (API)
- Fraud Rules and Filters (including behavioral analysis)
- Customized reports
- Pre-made lists
- Customized Categorization for up to 3 applications
OSSEC Monitoring Pack
OSSEC is a well known open source Host IDS System , OSSEC enables pin-pointed OS monitoring ; including – files and check sums , known and unknown attack pattern discovery and general OS health check. Our tailored pack includes:
- Rules Filters
- Reports and use cases
- Pre-made active lists and dashboards