What is ManageEngine EventLog Analyzer?
EventLog Analyzer is a comprehensive log management solution designed to collect, analyze, correlate, search, and archive log data from a wide range of sources, including endpoints, firewalls, servers, databases, and applications. This on-premise solution caters to businesses of all sizes across various industries, providing visibility into network activity, detecting suspicious activities, mitigating potential threats, and offering audit-ready report templates to assist enterprises in complying with IT mandates
Highlights
- Auditing Capabilities: Audits network perimeter devices' logs, user activities, server account changes, user accesses, and more to meet security auditing needs
- Threat Intelligence: Bundled with a global IP threat database and STIX/TAXII feed processor to detect any malicious inbound or outbound traffic
- Log Management: Collects, analyzes, correlates, searches, and archives log data from over 700 log sources, with a custom log parser to analyze any human-readable log format
- High-Speed Processing: Processes log data at 25,000 logs/second to detect attacks in real-time or conduct quick forensic analysis to reduce the impact of a breach
- Incident Management: Raises tickets in help desk consoles (ServiceNow and ServiceDesk Plus) for every detected incident to ensure accountability and speed up incident resolution.
Features
Log Analysis
Importing Event Logs
Log Collection
Log Archiving