Products Store Partners Affiliate Support |

Download
Overview Features Demo Get Quote Resources Support Customers

EventLog Analyzer architecture

Product Docs Videos Infographics Whitepaper Case Studies

Awards FAQs

System
Requirements Standalone edition
Quick start guide
EventLog Analyzer is a log management and IT compliance solution for your
Agent configuration enterprise. It's web-based, and it employs both agentless and agent-based
guide mechanisms to collect logs from log sources across your network while also
Tuning guide providing you with in-depth reports, alerts, and security analyses.

Architecture The main modules EventLog Analyzer has to offer:

User manual
Log collector: Collects and centralizes log data from various sources in the
High availability network via agentless and agent-based mechanisms. It can collect logs from
guide various sources including operating systems, databases, network devices,
Solution briefs security devices, applications, and more.

Supported log & Parsing engine: Filters logs which aren't needed—as configured by the
data sources administrator—and normalizes raw logs into a standard format.

Best practices guide Central database: Stores user configuration details and log source information.
The default database that comes installed with the product is PostgreSQL.
SSL configuration
Users have the option of migrating to Microsoft SQL Server, based on their
guide
organizational requirements and proficiency with the database.

Report builder: Processes the raw and normalized logs to build over a thousand
predefined reports—including compliance reports—and custom reports as
well. EventLog Analyzer generates and sends out scheduled reports, and it
exports reports when needed.

Alerts and incident management: Sends out email and SMS notifications based
on configured alert profiles; assigns incidents to designated technicians, and

Download Live Demo

stores the statuses and related information for every incident.
Video Demo Get Quote Buy Now
 Automated Workflows: Automates incident response through predefined
Products Store Partners Affiliate Support |
workflows that set off when alerts are triggered.

Log search engine: The search engine, powered by Elasticsearch, is employed

to store parsed logs from all devices and applications across your network,
Download
along with the report and alert data. It swiftly searches through millions of logs
in seconds, delivering customer-required
Overview Features Demoreports
Getand information.
Quote Resources Support Customers

Correlation engine: Correlates logs from heterogeneous sources to identify

potential attacks, and generates in-depth aggregated incident reports and
security alerts.

Threat intelligence: Regularly retrieves and stores threat data from popular
STIX/TAXII-based threat feeds as well as other open source feeds. The module
compares this data with network events and then generates threat alerts when
malicious entities are discovered interacting with your network.

Archive engine: Stores compressed raw or parsed logs (based on

configuration) from all devices and applications across your network in a
specified location. Users can also configure policies for archival based on their
requirements.

Download Live Demo Video Demo Get Quote Buy Now

 Distributed edition Products Store Partners Affiliate Support |

EventLog Analyzer's distributed edition is useful when your network consists of over
a thousand log sources, or if it's spread across multiple geographic regions. It's also Download
the perfect model for managed security service providers (MSSPs) to deploy. It
Overview
follows a distributed Features
architecture Demo managed
with multiple Get Quote
servers Resources Support
being controlled Customers

by a single, central admin server.

Admin server: A central server that provides the administrator with control over
the entire network.

Managed server: Each managed server oversees a smaller portion of the

network, and it works exactly like the standalone edition described above.

EventLog Analyzer Trusted By Customer Speaks

Windows Event logs and device Syslogs are a

real time synopsis of what is happening on a

computer or network. EventLog Analyzer is an

economical, functional and easy-to-utilize tool

that allows me to know what is going on in the

network by pushing alerts and reports, both in

real time and scheduled. It is a premium 1

2
software Intrusion Detection System application.
3
Download Live Demo Jim
Video Demo Lloyd Get Quote 4
Buy Now
 Products Store Partners Affiliate Support |

Testimonials Case Studies

Download
Overview Features Demo Get Quote Resources Support Customers

Awards and Recognitions

Download Live Demo Video Demo Get Quote Buy Now

 Products Store Partners Affiliate Support |

A Single Pane of Glass for Comprehensive Log Management

Download
Log Management Log Analysis IT Compliance SIEM Quick Links Related Products
Overview Features Demo Get Quote Resources Support Customers

» Agent-less Log Collection » Applications Log Management » Cloud Infrastructure Log

Monitoring
» Agent based Log Collection » Active Directory Logs auditing
» Universal Log Parsing and
» Importing Event Logs » MS IIS - Web Server/ FTP Server Indexing
Log Monitoring
» Windows Event Log » Log Retention
Management » IBM AS 400/ iSeries Log
Monitoring » Syslog Management
» VMware ESX/ ESXi Log
Monitoring

Company Regional websites Follow us:

About us Careers
Global (English)
News Site map
Events Trademarks
Newsletter
Customers EULA
PitStop Contact us Subscribe to Monthly
Newsletter ManageEngine is a division of
Partner Feedback
Zoho Corp.
portal Privacy Email *
Affiliate policy
GovernmentSecurity
Newsletter Security
Cookie response
policy center

© 2024 Zoho Corporation Pvt. Ltd. All rights reserved.

Download Live Demo Video Demo Get Quote Buy Now