LOGTITAN can play an important role in helping your organization comply with the requirements of the European Union’s looming General Data Protection Regulations (GDPR). We will show you how LOGTITAN SIEM can effectively identify and stop Personally Identifiable Information (PII) breaches.   Use Case: Personally Identifiable Information (PII) breached · [...]

Step 1: Update VPN Users To Locations list. You must have 30 days of data available for this rule. The rule can be configured to start and stop 30 days later automatically by using “Start Time” and “Stop Time” parameters.     There are different types of lists, and each [...]

LOGTITAN standardizes the category of activities collected from log and machine data. LOGTITAN has a common taxonomy that provides many advantages. The basic idea here is that LOGTITAN attempt to map various properties of the event into standard taxonomies or classifications. This feature is more important than parsing since it [...]

A SIEM’s power is in its correlation. LOGTITAN has advanced threat detection capabilities. LOGTITAN combines alerts, advanced correlations, profiles, user behavior rules to detect threats.     Below list is sample use cases from LOGTITAN correlation library:   If a user is in the administrator group and trying to authenticate [...]

Snort is a free open source network intrusion detection system and intrusion prevention system. It is capable of real-time traffic analysis and packet logging on IP networks. Snort is a one of the IDS/IPS technology solutions supported by LOGTITAN. All Snort identified incidents are gathered and interpreted by LOGTITAN to [...]

The importance of logs isn’t in the logging itself. Instead, it’s the analysis of these logs is what provides value. SIEM, though, is a significant step beyond log management. Detection is the most critical and indispensable part of a SIEM otherwise we use log Management. SIEM is about looking at [...]

    LOGTITAN is integrated with Kibana, an open-source data visualization tool that provides additional flexibility when navigating data. This allows users to create custom visualizations and interactive dashboards for greater visibility into an environment. Why Use Kibana? Kibana offers histograms, line graphs, pie charts, sunbursts, geospatial map displays, and [...]

Most of the time User Behavior rules are not configurable and SIEM user guides contain notifications like “If you edit those rules, they might not work as expected.” This “Quick Guide” was created to have you develop user behavior rule and then edit, configure and modify those rules. First simple [...]

   Organizations still get hit with malware and ransomware in spite of that fact that antivirus and firewall solutions are in place. For this reason, a layered security approach will be more effective to catch malware infections before they start running. We will show you how LOGTITAN SIEM can effectively [...]

      The primary benefit of a SIEM system to any organization, is the fact it immensely increases the effectiveness of incident response teams. The early detection of occurrences is a key factor for incident containment and eradication, which means a reduced overall impact. Since SIEMs can correlate events [...]