LCE-Log Correlation Engine

Event correlation in two clicks!

The LCE module, using the informations collected from others platform modules, allows you to mitigate the danger of IT threats. The correlation engine is able to aggregate events coming from various data sources and applying predefined rules to construct individual scenarios. The rules trigger an automatic action against potential attack or create an alert able to reduce response times when an incident occurs.

Powerful Correlation Engine

The SGBox correlation engine allows you to interconnect a series of events chains coming from single or multiple sources, analyzing the values collected such as: timestamp, IP address, User names, etc …

Rules Set

It is possible to choose correlation rules from many predefined templates, constantly updated and guaranteed by the experience of our Security Engineers.


Create your own rules. Teach the engine and specify the actions he has to take (Email alert, automatic resolution, or something else) when events occurs.

Search on

It is possible apply rules on historical data in order to verify it or search if something happened in past events.

% Renewals

Do you want to find out more about our solution? Request a remote presentation right away!