Log Management Tools
Log Management Tools Overview
What are Log Management Tools?
Log management tools help to manage the very large volume of log messages, or computer-generated audit trails and event logs generated by servers and other network devices. Managing this data involves defining what needs to be logged, how it should be logged and how long the log data should be kept.
Like the broader category of IT operations analytics, log management is a cousin of business intelligence (BI) but exclusively focused on the IT domain. Like BI software, log management software provides a comprehensive view of transactional data across the organization rather than multiple data silos.
There are two basic varieties of log management system. The first is centralized logging servers that collect and consolidate logs for later consumption, but do not actually analyze data. The second is security information and even monitoring (SIEM) software that provides event logging, but also aggregation, correlation, alerting and reporting services. These are more sophisticated tools more likely to be used by larger enterprises with complex IT topographies.
Log Management Features & Capabilities
- Data collection and indexing
- Search capability
- Event correlation
- Custom dashboards
- Alerts and notifications
Log Management Products
Splunk is software for searching, monitoring, and analyzing machine-generated big data, via a web-style interface. It captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.
Sumo Logic is a log management offering from the San Francisco based company of the same name.
Check Point Software Technologies in Carlos, California offers log management software.
Logger (formerly HPE Arcsight Logger) is a log management option, acquired by Micro Focus from Hewlett-Packard Enterprise.
Austin based SolarWinds acquired log management tool Papertrail in April, 2015.
LogLogic, now from TIBCO (since the 2012 acquisition), is security information and event management (SIEM) software.
Logentries is a log management application from Rapid7 headquartered in Boston.
EventLog Analyzer is a practical solution that is designed to collect and archive huge amounts of Syslogs and SNMP traps. This helps security admins in identifying security incidents, policy violations, and operational issues. Virtually every device in an organization’s network can generate logs...
As an all-in-one SIEM solution, Logsign is primarily focused on Security Intelligence, Log Management and Compliance Reporting. According to the vendor, Logsign aims to:Unify the view and monitoring of cloud and local dataIncrease awareness via security-oriented dashboardsProvide clear...
Used by Microsoft, Amazon, Google, and many more, Fluentd was invented by Treasure Data to easily collect, parse, and deliver massive amounts of data from applications, infrastructure, network devices, and log files. Enterprise Fluentd expands on that original vision and brings enterprise-grade...
CenturyLink® Adaptive Network Security is a network-based layer of protection which acts as a sensor, giving you the visibility and control needed to monitor, block and report attempts to break into your network. CenturyLink Adaptive Network Security can quickly adapt to new threats without...
CenturyLink® Security Log Monitoring service provides comprehensive security log traffic monitoring using people, technology and processes to analyze security log traffic 24 hours a day, 7 days a week and includes access to a portal for queries, reports, and other service-related activities....
With CenturyLink® Analytics and Threat Management services, you get the visibility needed to proactively identify potential security issues and respond to them before they cause harm. And with our event and incident management and response services, you can ease the burden of having to develop and...