Collection, Analysis and Advanced Search

More than a Log Repository

The Log Management module is able to manage log data and security-related events from any kind of data source. Adding IP sources the Log Management module automatically gathers and classify informations to provide a clear overview of the security posture across the organization. The log are stored encrypted and signed to ensure data integrity and be compliant with major regulations. Due to an ultra performing log ingestion engine, SGBox can collect a huge amount of security events from a lot of cyber security products (NIDS, firewall, AV, network devices, etc.), web application attacks and attempted information leaks that can be shown in a dynamic dashboard to facilitate investigation.

Different Logs, Fast data analysis

The collected information are shown into useful dashboards to the users, who doesn’t need to learn complex query languages or make scripts to access his data. The users can analyze events in real time or accessing the historical data, taking advantage of a very fast and effective data management without limitations on the amount of volumes.

Uncommon Simplicity

Powerfully designed and intuitive log aggregation, tagging, filtering, and searching for effective troubleshooting. Drill-down events, starting from an overview of historical data by entering in detail to analyze the single event.

Data Integrity

Strong encryption with asymmetric keys are used to grant efficient log encryption of stored data. Timestamp and sign are used to certify the integrity of data. Unlimited data volume can be stored without time limitations.

Unlimited Log Format

SGBox is able to collect any kind of log data format. In case of unknown log formats, such as custom application, is simple to generate the appropriate patterns to recognize all the security events.

% of Renewals
% Annual Growth