List of solution packs
Solution packs provide an end-to-end and easy-to-use package that can collect, transform, and send your logs to your SIEM in a few simple clicks. A solution pack provides a pre-built configuration you can apply to your NXLog Agents and custom rules you can import into your SIEM.
Using solution packs gets you up and running quickly and painlessly, without having to create custom configurations for common log types and operating systems, and custom rulebooks for your SIEM.
For more information see the following articles in our documentation.
The following table lists the solution packs we currently have available in NXLog Platform. The list indicates the operating system where the logs are collected, the SIEM that receives those logs, and what log types are collected.
Operating system | SIEM | Log sources |
---|---|---|
macOS |
QRadar |
macOS Endpoint Security macOS install.log macOS unified logging system (ULS) |
macOS |
Google Chronicle |
macOS Endpoint Security macOS unified logging system (ULS) |
macOS |
Microsoft Sentinel |
macOS Endpoint Security macOS unified logging system (ULS) |
Microsoft Windows |
Google Chronicle |
Account usage activities Logon events System or service failure events Security audit events MsiInstaller events System integrity events Windows update events Windows update error events |
We’re constantly working on new solution packs, so if you don’t see your specific use case in this list, feel free to contact us and let us know your requirements. |