Integrations
30+ built-in log parsers, 20+ SOAR actions, and vendor integrations for your existing tools.
Integrations
Works with your existing tools
30+ built-in log parsers, 20+ SOAR actions, and extensible vendor integration framework for automated response.
Supported Log Sources (30+ Parsers)
Quick Heal
Seqrite
Windows Event
Sysmon
UPI Switch
Palo Alto
Fortinet
Cisco ASA
Linux Syslog
Apache
Nginx
AWS CloudTrail
Azure Activity
GCP Audit
Okta
Active Directory
Microsoft 365
Exchange
DNS
DHCP
VPN
Firewall Generic
JSON Generic
CEF
LEEF
SOAR Actions (20+ Built-in)
Slack
Teams
Email
Jira
ServiceNow
Webhooks
AWS EC2 Isolate
AWS SG Lockdown
AWS IAM Suspend
Azure NSG Block
Azure AD Disable
GCP VPC Rule
GCP IAM Revoke
Defender Isolate
Defender Scan
Palo Alto Block IP/URL
FortiGate Ban IP
Cisco ACL Update
iptables Block
Windows Firewall Block
Firewall / Network
iptables
Windows Firewall
AWS ACL
Azure NSG
GCP VPC
Identity / SSO
OIDC
SAML 2.0
SCIM
Microsoft Entra ID
Okta
Threat Intel & Enrichment
VirusTotal
AbuseIPDB
AlienVault OTX
MISP
TAXII/STIX 2.1