Sekoia.io Intakes

• AWS CloudTrail
• Alsid
• Amazon GuardDuty
• Amazon VPC Flow Logs
• Amazon WAF
• Apache HTTP Server
• Azure Active Directory
• Azure Front Door
• Azure Linux
• Azure MySQL
• Azure Network Watcher (NSG flow logs)
• Azure Windows
• BIND
• CEF
• Cato SASE
• Check Point
• Cisco Duo Security
• Cisco Email Security Appliance
• Cisco IOS
• Cisco Identity Services Engine (ISE)
• Cisco Meraki MX
• Cisco NX-OS
• Cisco Secure Firewall
• Cisco Web Security Appliance
• Citrix ADC
• Cloudflare Access Request
• Cloudflare Audit Logs
• Cloudflare DNS Gateway
• Cloudflare DNS logs
• Cloudflare Firewall Events
• Cloudflare Gateway HTTP
• Cloudflare Gateway Network
• Cloudflare HTTP requests
• CrowdStrike Falcon
• CrowdStrike Telemetry
• Cybereason MalOp
• Cybereason MalOp activity
• Darktrace Threat Visualizer
• Digital Shadows SearchLight
• F5 BIG-IP
• Forcepoint Secure Web Gateway
• FortiMail
• FortiProxy
• FortiWeb
• Fortigate
• FreeRADIUS
• Gatewatcher AionIQ
• Github Audit Logs
• Google Kubernetes Engine (GKE)
• Google Reports
• Google VPC Flow Logs
• Google Workspace and Google Cloud Audit Logs
• HAProxy
• Harfanglab
• IBM AIX
• ISC DHCP
• Imperva Web Application Firewall
• Infoblox DDI
• Jumpcloud Directory Insights
• Linux
• Linux AuditBeat
• Log Insight Windows
• McAfee Web Gateway / Skyhigh Secure Web Gateway
• Microsoft 365 Defender
• Microsoft Always On VPN
• Microsoft Intune
• NGINX
• Netfilter
• Netskope Events
• OGO Shield WAF
• OPNSense
• Office 365
• Office 365 Message Trace
• Okta System log
• OpenLDAP
• OpenSSH
• Palo Alto
• Panda Security Aether
• Postfix
• Proofpoint On Demand
• Proofpoint Targeted Attack Protection
• Pulse Connect Secure
• RSA SecurID
• Raw
• Retarus Email Security
• Rubycat PROVE IT
• Salesforce
• Sekoia.io Endpoint Agent
• Sekoia.io activity logs
• SentinelOne
• SentinelOne Cloud Funnel 1.0 [Deprecated]
• SentinelOne Cloud Funnel 2.0
• SonicWall Firewall
• Sophos EDR
• Sophos Firewall
• Sophos Threat Analysis Center
• SpamAssassin
• Squid
• Stormshield Network Security
• Stormshield SES
• Suricata
• Symantec Endpoint Protection
• TEHTRIS Endpoint Detection & Reponse
• Tanium
• Trellix ePO
• Trend Micro Apex One
• Trend Micro Deep Security / Workload Security
• Ubika WAAP Gateway
• Umbrella DNS Logs
• Umbrella IP Logs
• Umbrella Proxy Logs
• Unbound
• VMWare ESXi
• VMWare VCenter
• Vade Cloud
• Vade M365
• Varonis Data Security
• Vectra Cognito Detect
• Wallix
• WatchGuard Firebox
• Windows
• Winlogbeat
• WithSecure Elements
• Zeek
• Zscaler Internet Access