Sources de log pris en charge
LogPoint est livré avec des centaines d’intégrations pour vous faciliter la vie. Nos clients et partenaires disposent de contrôles, de tableaux de bord, d’alertes et de rapports prêts à l’emploi. Toutes nos applications (Téléchargez-les facilement depuis le centre d’assistance) sont conçues pour s’adapter à diverses infrastructures et peuvent être implémentées en quelques minutes. Vous pouvez aussi calculer facilement vos besoins SIEM avec notre sizing calculator.
Nous ajoutons continuellement plus de sources de log en fonction des besoins des clients, alors faites-nous savoir si vous ne voyez pas ce dont vous avez besoin dans la liste ci-dessous. Si l’application est une solution commerciale disponible sur le marché et que nous ne la supportons pas, nous la développerons pour vous dans le cadre de votre abonnement LogPoint.
Contactez LogPoint
Prenez contact avec nous via le formulaire et nous reviendrons vers vous le plus vite possible:
Windows
- LP_Windows DNS – Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016
- Windows vista, 7, 8, 8.1, 10
- LP_Windows DHCP and DNS – Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016
Windows vista, 7, 8, 8.1, 10 - LPA_Windows v4.0.0 – Windows Server 2008, 2008 R2, 2012, 2012 R2, 201
- Windows Server HyperV
- Windows Server R2 HyperV
Cisco
- Cisco 2500 Series Wireless Controller
- Cisco VPN 3000 Concentrator
- Cisco 5500 Series Wireless Controller
- Cisco 6506 E Switch
- Cisco Nexus 5548 – Cisco Nexus 5548 DC switch, NX OS Software Release 5.0(3)N2(1)
- Cisco Catalyst 35XX series – Cisco Catalyst 35XX, 29XX series
Brocade
- Fabric OS v8.x, v7.x, 7.4.1b.
- Brocade 300
- Brocade 5100
- Brocade 5480
- Brocade 6510 (HPE SN6000B)
- Brocade SAN FC Platforms
HP
- HP Switch Procurve.
- LP_HP Switch 5820 Series v5.20.
- LP_HP Switch Generic – Hp Switch generic.
- LP_HP Nonstop.
- LP_HP Switch 5700 and 5900 Series – HP Flex Fabric Switch 5700 and 5900
- HP ProCurve Switch, HP 5820X-24XG-SFP+
Snapt Haproxy
- Snapt Haproxy
vShield Edge LoadBalancer
- vShield Edge LoadBalancer
Aruba
- ArubaOS v6.x
- Aruba ClearPass v6.x
Trapeze WLAN Controller
- Trapeze WLAN Controller
Dell
- Dell OpenManage v7.x, v8.x
- Dell Power Connect 6224,6248 Switches
- Dell Force 10 Series Switches
BIG IP
- BIG-IP v11.x.x
- BIG-IP v12.x.x
- BIG-IP v13.x.x
A10 Networks
- A10 Thunder Server 2.7.2
- A10 Thunder Series and AX Series
Hitachi NAS
- Hitachi NAS 3090-G2 v12.2.3753.08
Meru
- Meru System Director v5.x, v6.x, 7.x, v8.x
Microsoft IIS
- Microsoft IIS 7.5, IIS 7.0, IIS6.0, IIS 5.0, IIS 4.0
Apache HTTP Server
- Apache HTTP Server v2.x (Common Log Format)
- Apache Tomcat v7, v8
- Apache Web Servers
NginX
- NginX v1.x
Dropbear
- Dropbear Server and Client
Unix
- Linux/Unix
- Linux/Unix Syscall
- Linux/Unix SAP
- Linux/Unix Vparmodify
- Linux/Unix Winbindd
- Linux/Unix Lighttpd
- Linux/Unix Syslog NG
- Linux/Unix VS Ftpd
- Linux/Unix Cimserver
- Linux/Unix Cmclconfd
- Linux/Unix Runuser
- Linux/Unix Pure Ftpd
- Linux/Unix Auditd
- Linux/Unix RpcMountd
- Linux/Unix Proftpd
- Linux/Unix Named
- Linux/Unix Rsyslogd
- Linux/Unix Vm
- Linux/Unix SSL Proxy
- Linux/Unix Audispd
- Linux/Unix Rhnsd
- Linux/Unix Rshd
- Linux/Unix Lvmpud
- Linux/Unix Suhosin
- Linux/Unix SU
- Linux/Unix Sudo
- Linux/Unix Iptables
- Linux/Unix Sudoscriptd
- Linux/Unix Logger
- Linux/Unix Ftp
- Linux/Unix Xntpd
- Linux/Unix Mountd
- Linux/Unix Systemd
- Linux/Unix Run-parts
- Linux/Unix Solaris Server
- Linux/Unix xinetd
- Linux/Unix SSHD
- Linux/Unix Yum
- Linux/Unix IPsec
- Linux/Unix Auditlog
- Linux/Unix Xpand
- Linux/Unix PAM Tally
- Linux/Unix Generic
- Linux/Unix Sfd
- Linux/Unix Anacron
- Linux/Unix Smbd
- Linux/Unix passwd
- Linux/Unix Bash
- Linux/Unix Lrmd
- Linux/Unix InotifyWait
- Linux/Unix SNMP Traps
- Linux/Unix UCARP
- Linux/Unix Red Hat Linux
- Linux/Unix Nscd
- Linux/Unix Common System
- Linux/Unix Httpd
- Linux/Unix Syslogd
- Linux/Unix l4d
- Linux/Unix Crond
- Linux/Unix Lvm
- Linux/Unix Chef Client
- Linux/Unix Pengine
- Linux/Unix NTPD
- Linux/Unix Inetd
- Linux/Unix SNMP
- Linux/Unix Snmpd
- Linux/Unix Routed
- Linux/Unix Crmd
- Linux/Unix Useradd
- Linux/Unix Ftpd
- Linux/Unix Dhclient
- Linux/Unix Cron
PostFix
- PostFix Mail Server on Unix environment
Samba
- Samba 3.x, 4.x
- Samba Server
Sendmail
- Sendmail v8.x
- Sendmail SMTP
OpenVPN
- OpenVPN v2.x
Netapp Filer FAS3240
- Data ONTAP v7.x, v8.x
- Netapp Filer FAS 3240
Shavlik Protect
- Shavlik Protect V9.2.
Filezilla
- Filezilla v3.x
MobileIron
- MobileIron
- Mobile Iron Alerts version 7.5
Spectrum Protect
- Tivoli Storage Manager v6.x, v7.x
Filezilla
- Filezilla v3.x
CAS Server
- CAS-server v3.51
Faxmaker
- GFI Faxmaker 6.x
Open LDAP
- OpenLDAP v2.4.42
Vmware ESX/ESXi
- Vmware ESX/ESXi v4.x, v5.x, v6.x
- VMware vCenter v5.5.0, v6.0.0 and v6.5.0
VMware Horizon View v6.2.0
- Vmware ESX/ESXi Vpxd
- Vmware ESX/ESXi Vpxd Generic
- Vmware ESX/ESXi Stats
- Vmware ESX/ESXi LS
- Vmware ESX/ESXi LS
- Vmware ESX/ESXi Vpxd-profiler
- Vmware ESX/ESXi Access
- Vmware ESX/ESXi Jointool
- Vmware ESX/ESXi Vpxd_cfg
- Vmware ESX/ESXi Kernel
- Vmware ESX/ESXi Vpxa
- Vmware ESX/ESXi Hostd
- Vmware ESX/ESXi Syslog
- Vmware ESX/ESXi hostd-probe
- Vmware ESX/ESXi vmkwarning
- Vmware ESX/ESXi Rhttpproxy
- Vmware ESX/ESXi CROND
- Vmware ESX/ESXi SFCBD
- Vmware ESX/ESXi VOBD
- Vmware ESX/ESXi CIMSLP
- Vmware ESX/ESXi Heartbeat
- Vmware ESX/ESXi TmpWatch
- Vmware ESX/ESXi sshd
- Vmware ESX/ESXi smbiosDump
- Vmware ESX/ESXi vmauthd
- Vmware ESX/ESXi Fdm
- Vmware ESX/ESXi smartd
- Vmware ESX/ESXi vmkernel
- Vmware ESX/ESXi root
- Vmware ESX/ESXi localcli
- Vmware ESX/ESXi lwsmd
Open DJ
- OpenDJ 2.6
AIX
- AIX 7.x
LogPoint
- Webserver Common
- Kernel
- LogPoint Audit
OpenVMS
- Open VMS 7.x, 8.x
Nutanix
- Nutanix NOS v4.1
FTP Package
- Linux/Unix FTP
InfoBlox
- InfoBlox – Enterprise Network Infrastructure Automation Software and Hardware Provider
- Infoblox DNS/DHCP Management
XenServer
- XenServer
SUSE Enterprise Linux
- SuSE Linux Enterprise Server
FreeBSD/OpenBSD
- FreeBSD
- OpenBSD
F5 Loadbalancer
- F5 Loadbalancer
vShield Edge Load Balancer
- vShield Edge Load Balancer
BlueSocket WLAN
- BlueSocket WLAN
Meru WLAN Controller
- Meru WLAN Controller
Microsoft Servers
- Microsoft DNS Servers
- Microsoft DHCP Servers
Microsoft Exchange
- Microsoft Exchange Message Tracking 2010, 2013, 2016 – comma-delimited
- Microsoft Exchange 2003, 2007, 2010, 2013
Logbinder
- MSExchange
- SharePoint
Qmail
- Qmail v1.x
SAP Business Intelligence
- Business Objects
Microsoft Outlook Web Access
- Microsoft Outlook Web Access
Cisco
- Cisco Iron Port Email Security-II – Cisco Iron Port Email Security
- Cisco IronPort Email Security – Cisco Iron Port Email Security
- Cisco ACS – Cisco ACS Version acs-5.4.0.46-B.221
- Cisco MSE – Cisco Mobility Services Engine
- Cisco ISE – Cisco ISE 1.2.0.899
- Cisco Iron Port Email Security-II – Cisco Iron Port Email Security
- Cisco Prime – Cisco Prime Infrastructure version 1.3
- Cisco ACE – Cisco ACE 4700 Series Application Control Engine Appliance
- Cisco TACACS
Barracuda
- Barracuda Web Application Firewall v7.x, v8.x
- Barracuda Web Application Firewall CEF
- Barracuda Spam & Virus Firewall v4.x
- Barracuda NG Firewall v6.x, v7.x
- Barracuda Web Security Gateway v6.x
Microsoft TMG
- Acceleration Server 2006
- ForeFont-Threat Management Gateway 2010
- Microsoft TMG 2010
Microsoft ISA Server
- Microsoft ISA Server
FSecure
- FSecure Gatekeeper v5.x
- F-Secure v11
Halon Mail Security and Firewall Appliance
- Halon Mail Security and Firewall Appliance
- Halon Security Router
Semantic Security
- Mail Security for Microsoft Exchange
- Symantec MessageLabs
- Symantec Messaging Gateway
- Symantec VIP
Squid
- Squid v1.x, v2.5
- Squid Cache v2.6 and above
- SQUID Proxy
Citrix
- NetScaler v12.x, v11.x, v10.x
- Citrix Access Gateway
ClearSwift
- Clearswift SEG v4.x, 3.x
VeriSec Freja
- Verisec Freja Version R2.4.0.11860-1367
Activtrak
- Activtrak 4.3.x.x
Vade Retro AntiSpam
- Vade Retro AntiSpam
Mideye
- Mideye Server v4.x
Team Center
- Teamcenter by Siemens Version v10.1.2.1
SMS Passcode
- SMS Passcode v6.x, v7.x, v8.x
Sitecore
- Sitecore 8.x
Shibboleth
- Shibboleth v2.x, v3.x
Rubrik
- Rubrik
Rhebo
- Rhebo
Perago
- Perago
Pega
- Pega PRPC v7.22
Dell
- Dell OpenManage v7.x, v8.x
RSA SecurID
- RSA Authentication Manager 7.x and 8.x
- RSA SecurID Appliance 130
- RSA SecurID Appliance 250
Wallix
- Wallix v10.x
- Wallix AdminBastion v4.2.3 build 24048 (wab-4.2.3.0-wallix1)
- Wallix Proxy WPA R50 4.2.1
Extreme Network
- ExtremeXOS version 12.5.4.5
- Extreme Networks Management Center v7.x, v8.x
EZProxy
- EZproxy v5.x, v6.x
Multi Modem iSMS
- The MultiModem iSMS Intelligent SMS server
Trustwave SEG
- Trustwave SEG
- Trustwave SEG, previously known as MailMarshal SEG or MailMarshal SMTP
Bluecoat
- Access Logs for BlueCoat SG/BlueCoat SG Proxy – SGOS 6.5.2.1
Radware DefensePro
- Radware DefensePro v3.6
Zscaler
- Zscaler NSS with the provided feed format
Free Radius
- Free Radius VPN, Server and WLAN
Ping Identity
- PingFederate Server v8.x
Safenet
- SafeNet KeySecure v 7.1
- Safenet 2FA (Two Factor Authentication)
Smoothwall Webproxy
- Smoothwall Webproxy
Fail2ban
- Fail2ban v0.8
Lenovo
- Lenovo Storage V3700 V2/V5030 Series
PortWise
- PortWise Authentication Server v4.x
Websense
- Forcepoint Websense v8.X
- Forcepoint (Websense) V10000 G3 – Software v8.2
MobilityGuard
- MobilityGuard OneGate v16
Mimecast
- Mimecast v3.x
IBoss
- iBoss URL Filtering Appliance
First Class
- OpenText FirstClass Server 16.0
Exim
- Exim 4.89
Cyberlytic
- Cyberlytics CTP all version
Centrify
- Centrify Server Suite 2017
Balabit
- Balabit Shell Control Box 5.0.2
BeyondTrust
- Bomgar Remote Support v16.2.1
- Privileged Access Management
- PowerBroker Insight Version v6.4.7.118
Zertificon Z1
- Zertificon Z1
Boxaudit
- Boxaudit
Integrity Scanner
- Integrity Scanner
F5 ASM
- F5 ASM
DirectAccess
- Microsoft DirectAccess
Avaya NAC
- Avaya NAC
Barracuda
- Barracuda Web Application Firewall v7.x, v8.x
- Barracuda Web Application Firewall CEF
- Barracuda Spam & Virus Firewall v4.x
- Barracuda NG Firewall v6.x, v7.x
- Barracuda Web Security Gateway v6.x
BRO IDS
- Bro IDS 2.5.x
CheckPoint Firewall
- CheckPoint R7X
- Checkpoint CEF
- Checkpoint Syslog
- CheckPoint Firewalls (OPSEC-LEA)
Cisco
- Cisco FWSM – Cisco Catalyst 65XX series
- Cisco TACACS
- Cisco Meraki MR18
- Cisco VSG CEF, Cisco VSG 4.2(1)VSG2(1.1)
- Cisco PIX/ASA
- Cisco IOS/CatOS
- Cisco VSG
- Cisco FirePower
- Cisco SourceFire IDS/IPS
Clavister CorePlus
- Clavister Coreplus v9.x
Juniper Firewall
- JunOS
- Juniper Secure Access
- Juniper VGW
- Juniper SSG140
- Juniper Netscreen IDP
- Juniper Secure Access WELF
- JunOS SRX Firewall
- Juniper MAG-2600: 8.0R7
- Juniper ISG
NetGear Firewall
- NetGear Firewall (FWG114P)
Palo Alto Network Firewall
- CEF all version of PanOS
- PanOS v6.1, v7.1, v8.0, v8.1, v9.0 for CSV Log
- PaloAlto Next-Generation Firewalls
- PaloAlto Networks Panorama
Sidewinder Firewall
- Forcepoint Sidewinder 8.x
SnapGear Firewall
- SnapGear (McAfee) Firewall
Stonesoft
- StoneSoft Audit, Alert, FW, IPS, L2FW, SSLVPN log
- StoneGate Firewall v5.x.x
- StoneGate Management Center v5.x.x
Watchguard Firewall
- Watchguard Firewall v11.x
- Watchguard NGFW
- Watchguard UTM
ForeScout
- ForeScout CounterACT v7.1
- ForeScout Network Access Control
- Generic package for ForeScout v7
FortiGate
- FortiGate v4.x, v5.x, v6.x
- Fortinet Fortigate NGFW & UTM
Honeyd
- Honeyd v1.5
RedSocks
- Redsocks v3.7.0 alpha1
Nortel Contivity Secure IP
- Nortel Contivity Secure IP Services Gateway
Sophos
- Sophos Unified Threat Management v8, v9
- Sophos UTM WAF XG310
- Sophos XG Firewall v15.x
- Sophos Enterprise Console Server 2012, 2012 R2, 2016
Snort
- Snort v2.x
- Snort IDS
Cyberark
- Cyberark v8.x & v9.x
- CyberArk EPV (CEF)
- CyberArk PTA (CEF)
- CyberArk EPM
FireEye
- FireEye
- FireEye CEF
- FireEye CMS CEF
- FireEye Web
Draytek Vigor
- Draytek Vigor 3300V Firewall
Bluecoat
- Access Logs for BlueCoat SG/BlueCoat SG Proxy – SGOS 6.5.2.1
Cyberoam
- Cyberoam UTM and NGFW 10.x
Intermapper
- Intermapper Monitor Software v5.x, v6.x
PfSense Firewall
- PfSense Firewall v2.x
SonicWall Firewall
- STOSonicWall Firewall version 6.x and above
- Secure Mobile Access SonicWALL SRA EX7000 Version:11.4.0-468
Airlock
- Airlock WAF v6.x
Deny All WAF
- Deny All Web Application Firewall v6.x
HP
- LP_HP TippingPoint Network Security
- LP_HP TippingPointNetworkSecurityManagementSystem for HP TippingPoint Network Security Management System (SMS)
Stormshield
- Stormshield Network Security v3 and above
Tenable Security Center
- Nessus for Tenable Security Center Vulnerability Management
Intermapper
- Intermapper Monitor Software v5.x, v6.x
NetScreen Firewall
- ScreenOS 5.4.0
Airlok
- Airlock WAF v6.x
Integrity Scanner
- Integrity Scanner
Threat Intelligence
- Emerging ThreatCritical StackCSIS
Qulays
- QualysGuard Vulnerability Management
A10 Web Application Firewall
- A10 Web Application Firewall
Halon
- Halon Security Router
StirTaxii
-
Logs with Cyber Threat Intelligence (CTI) written in STIX format
Carbon Black
- Bit9 Security System v6.x
Trend Micro
- Trend Micro Control Manager v3.x, v5.x, v6.x
- Trend Micro Office Scan v10.x, 11.x
- Trend Micro DB
- Trend Micro Deep Discovery Inspector v2.x, v3.x
- Trend Micro IMSVA SMTP Relay v9
- Trend Micro IWSVA v6.5
- Trend Micro Deep Security Agent v6.x and above
FSecure
- FSecure Gatekeeper v5.x
- F-Secure v11
Symantec Security
- Symantec Endpoint Protection Version 12.1 RU6
- Symantec AntiVirus Corporate Edition
Sophos
- Sophos Endpoint Antivirus version 5.2.1 R2
Kaspersky
- Kaspersky Antivirus
- Kaspersky DB
- Kaspersky Endpoint Security 10
- Kaspersky LEEF
- Kaspersky Security Center (KSC)
Cylance
- Cylance Protect v1.4.x and above
- Cylance Optics v2.0
- Cylance EPO
SentinelOne
- All versions of SentinelOne with CEF log format
Malwarebytes
- CEF logs for Malwarebytes Breach Remediation
- CEF logs for Malwarebytes Endpoint Security
- CEF logs for Malwarebytes Timeliner
ESET
- ESET Server
Bitdefender
- BitDefender GravityZone 5.1.21-460
- BitDefender Endpoint Security 5.3.20-6642
DNS Analytics
- CSIS Secure DNS
- SecureDNS
- DNS BIND
McAfee EPO
- McAfee EPO Antivirus
- McAfee ePolicy Orchestration Server
Microsoft Defender ATP
- Microsoft Defender ATP
NCSCross
- NCS Cross v5, v4
UEBA Analytics
- UEBA Analytics
JSON Normalizer
- JSON Normalizer for any valid JSON logs
Ascom
- Ascom UCM
LogPoint Agent
- LogPoint Agent
Oracle
- Oracle WebLogic Server 12c
- Oracle Financials
IBM
- Generic IBM IMM log format
- IBM Iseries
- IBM Z/OS Communications Server v2.01
- IBM Integrated Management Module (IMM) firmware version: 4.31
- IBM RACF
- IBM AS400 & IBM iSeries Platform Logs
AgileSI
- AgileSI v2.x
SAP
- SAP Financial Planning
- SAP HR
- SAP PLM
- SAP SRM
- SAP CRM
- SAP ABAP and HANA Platforms
Microsoft Dynamics
- Microsoft Dynamics
MS-SQL
- MS-SQL Server 2005, 2008, 2012, 2014, 2016
Oracle
- Oracle 10g, 11g, 10.xg
- Oracle Database 10g
- Oracle on Windows
IBM
- IBM DB2 on z/OS
- IBM DB2 on Linux, Unix, Windows
Sybase
- Sybase Adaptive Server Enterprise 15.x
Office 365
- Office 365
Salesforce
- Salesforce
CloudTrail
- AWS Cloudtrail
Eventhubs
- Azure Eventhubs
Incapsula
- Incapsula
Zscaler
- Zscaler NSS
Veritas-SaaS Backup and Application Protection
- VeritasSaaS Backup
CiscoAMP
- CiscoAMP
CiscoUmbrella
- Cisco Umbrella AWS S3 buckets
MysqlRDS
- AWS MysqlRDS
CloudWatch
- AWS CloudWatch
VPCFlowLog
- AWS VPCFlowLog
DFLabs
- DFLabs
ServiceNow
- ServiceNow
Regulatory Compliance
- GDPR on Windows, Unix, Firewall
- Special Cases for GDPR:
- The LP_GDPR: File System Activities dashboard and report packages require configuration of WIndows and Palo Alto Firewall only.
- The LP_GDPR: User Privilege Escalation dashboard and report packages require configuration of Windows and Unix only.
- Special Cases for GDPR:
- GPG 13 on entire dependent sources
- PCI DSS on entire dependent sources
- ISO on entire dependent sources
- NERC-CIP on entire dependent sources
- SANS 6 Categories on entire dependent sources
- NIST on entire dependent sources.
- GLBA on entire dependent sources.
- HIPAA on entire dependent sources.
- SOX on entire dependent sources.