New Gen SIEM Tool development

by UnderDefense

Oct 25, 2018

Max 10min read

Home

5

Blog

What we have done:

We have developed from our US MSSP client a reliable, fast and easy-to-use solution for Security Analysts and CISOs which helps to collect, per-process and forward logs for further analysis.

Its main benefits:

  • a remote tool works with distributed systems monitoring and scanning.
  • maximum secure: uses exotic protocols as LDAPS for monitoring and Kerberos for authentication and the common line.
  • the implemented modules detect incidents by monitoring environment, network, and users.
  • our Secure Incident and Event management Tool helps to do an incident investigation with dissolvable agents.
  • the communication is performed with Virtual Appliance through VPN tunnels using encapsulation.

Read the full case study

Read the full case study