In an SIEM environment where your license is priced by data throughput, CorreLog SIEM Server can be used to intercept and filter security event logs before the data is consumed by your SIEM and sent to your SOC. The result is reduced throughput and considerable cost savings to your IT investment.
CorreLog SIEM system runs as a Windows service, with a standard web browser UI, and consumes minimal system resources. The entire CorreLog SIEM package can be downloaded in about 30 seconds on a modest 10 Mbps Internet connection. With its ability to collect and reformat disparate log data to industry-standard syslog
protocol for SIEM, CorreLog provides system-wide interoperability unmatched by rival, competing SIEM vendors.
CorreLog SIEM provides a standards-based method of collecting all the system log messages of your network using industry standard syslog protocol and SNMP traps. These messages are then correlated into understandable threats, alerts, and actions using sophisticated, easily configured rules, which are then reduced to actionable “tickets” that are sent to administrators as a trigger for remediation of incidents.
To view our distributed products, please select a product from the Windows/UNIX Products navigation menu at the top of the page.