Log Siphon is the single source for system events — Syslog, Snort and Suricata — collected and correlated in real time for monitoring, analysis and alerting.
A preview of the System Status console from the upcoming Log Siphon SIEM v8 release.
Any system that can send event data via Syslog — Windows, Sysmon, Linux, Mac, Cisco, Fortinet, SonicWall, Zeek — Log Siphon can receive and process. It also imports, correlates and alerts on intrusion data from Snort and Suricata, and monitors device health by SNMP and host discovery by Nmap.
Watch Syslog events stream in live, with keyword matches highlighted by risk so the things that matter surface first.
Drill into millions of events with search keys for phrase, event ID, device, risk and date. Schedule summary and search reports.
Set keyword risk levels and trigger email, flag and grouping actions automatically as matching events arrive.
Receives, imports and correlates event data from virtually any device or system
See Log Siphon running on real data. Request a walkthrough with our team.
Request a demo →With a combined 30+ years across State Government, Insurance, the Private Sector and Financial Institutions, RMJ Consulting delivers networking and technical solutions built around how our clients actually do business.
We are strong believers in security management and monitoring as core to protecting networks and the systems on them.
Email us for a live demo