Cross device event correlations

 

SECNOLOGY can correlate all the events from one or more data source, either on-line (Real-Time events) or off-line (log files located on the network).  SECNOLOGY’s correlation engine is able to correlate any combination of targets and use any Field as a Key to cross correlate different data without limitation. SECNOLOGY makes cross device event correlation easy. The Keys can be unique or not. An investigations window allows the correlation of events over a time span, a limited number of matched events, and a limited or unlimited number of events.  Configure the outcome as required by the user.  Make queries either by using Joins through the interactive user interface.  More