LOG CORRELATION ENGINE

Correlation, Alerts and Automated Response

Visibility of Dynamic Multi-Step Events

The Log Correlation Engine provides the capability to define rules and detect threat scenarios. SGBox aggregates and analyzes log data from across your network applications, systems and devices, making it possible to discover security threats alerts or trigger automatic countermeasures using scripts or interacting with external systems via API’s. The correlation rules may be used on real time or historical data. SGBox easy and intuitive GUI allows the creation of complex chained event based correlation rules in a few simple steps.

Quickly and Confidently

Perform efficient multi-step analysis and investigations with smart automation and visibility to quickly triage, prioritize and respond to threats.

Predefined Rules Set

It is possible to choose correlation rules from many predefined templates, constantly updated and guaranteed by the experience of our Security Engineers.

File Integrity Monitoring

Monitor file activities to protect sensitive information from theft, loss and malware. Check and view details or changes made to files and folders identifying an advanced persistent threat attack.

Automated Response

SGBox can engage automated response in case of threats by launching scripts or interacting with security components via API or APPs to mitigate theats.

1000
Projects
95
% of Renewals
50
% Annual Growth
50
Partners