Average Ratings 0 Ratings
Average Ratings 0 Ratings
Description
DNSEye detects malicious network traffic and reports if this traffic can be blocked using your other security devices. DNS is used in all protocols, including HTTP, HTTPS and IoT. DNS traffic provides information on your entire network, irrespective of the network protocol. DLP products cannot detect data exfiltration attacks using DNS tunnelling. DNS log analysis is required for an effective solution. 80% of malware domains do not currently have an IP address. Only the DNS log can detect malware requests without an IP address. DNSservers generate a large number of difficult-to-understand logs. DNSEye allows for the collection, enrichment and AI-based classifying of DNS logs. Its advanced SIEM integration saves time and EPS because it transfers only the data needed by SOC teams to SIEM. DNSEye collects logs from a variety of DNS servers, including many different brands and models. This can be done without requiring any changes to your network structure.
Description
iSecurity assists organizations in safeguarding their critical information assets from insider threats, unauthorized external access, and both intentional and accidental modifications to essential data in key business applications by providing immediate notifications to designated recipients. The real-time Syslog alerts generated by all iSecurity modules are seamlessly integrated with top-tier SIEM/DAM solutions like IBM’s Tivoli, McAfee, RSA enVision, Q1Labs, and GFI Solutions, and have undergone testing with other platforms such as ArcSight, HPOpenView, and CA UniCenter. Furthermore, iSecurity is compatible with Imperva SecureSphere DAM, which enhances security measures. The integration of SIEM products for detailed forensic analysis of security incidents has become a crucial need for businesses globally; Raz-Lee’s iSecurity suite has effectively supported Syslog-to-SIEM integration for many years, demonstrating reliable compatibility with various SIEM solutions. It also offers support for the two primary standards in the field – LEEF (IBM QRadar) and CEF (ArcSight), which are also widely accepted in numerous other SIEM platforms. This robust integration ensures that organizations are well-equipped to monitor and respond to potential security threats in real time.
API Access
Has API
API Access
Has API
Integrations
Splunk Cloud Platform
Azure DNS
BlueCat Gateway
CrowdStrike Container Security
EfficientIP DNS Blast
Exabeam
GFI EndPointSecurity
IBM QRadar SIEM
IBM Tivoli Monitoring
Infoblox Cloud Network Automation
Integrations
Splunk Cloud Platform
Azure DNS
BlueCat Gateway
CrowdStrike Container Security
EfficientIP DNS Blast
Exabeam
GFI EndPointSecurity
IBM QRadar SIEM
IBM Tivoli Monitoring
Infoblox Cloud Network Automation
Pricing Details
$1000
Free Trial
Free Version
Pricing Details
No price information available.
Free Trial
Free Version
Deployment
Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook
Deployment
Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook
Customer Support
Business Hours
Live Rep (24/7)
Online Support
Customer Support
Business Hours
Live Rep (24/7)
Online Support
Types of Training
Training Docs
Webinars
Live Training (Online)
In Person
Types of Training
Training Docs
Webinars
Live Training (Online)
In Person
Vendor Details
Company Name
DNSSense
Founded
2016
Country
United Kingdom
Website
www.dnssense.com
Vendor Details
Company Name
Raz-Lee Security
Founded
1983
Country
United States
Website
www.razlee.com/siemdam-support/
Product Features
Product Features
IT Alerting
Alert Noise Reduction
Alert Routing
Dynamic Notifications
Enriched Incident Context
Escalation Policies
Incident History Audit
Multi-User Alerting
Multiple Alert Types
On-Call Management
Rich HTML Email Notifications