|
Free |
Focus |
Forest |
|
|
Licensing |
|||
|
Licensing Options |
Free |
Perpetual or Monthly/Annual Lease |
Perpetual or Monthly/Annual Lease |
|
EPS (Event Per Second ) |
2K |
Unlimited |
Unlimited |
|
Daily Indexind Capacity |
5 GB |
100 GB |
200 - Unlimited |
|
Max. Log/Data Source |
3 |
50 - 200 - Unlimited |
100 - Unlimited |
|
Reporter User Limit |
Unlimited |
Unlimited |
Unlimited |
|
Architecture |
|||
|
100 Times Faster than SQL Based Systems |
✔ |
✔ |
✔ |
|
Log Indexing |
✔ |
✔ |
✔ |
|
Offline Data Backup |
✔ |
✔ |
✔ |
|
Log Compression |
✔ |
✔ |
✔ |
|
Compressed Indexes |
✔ |
✔ |
✔ |
|
Distributed Online Data Backup (2x,3x,5x) |
✘ |
✘ |
✔ |
|
Hadoop Distributed File System |
✘ |
✘ |
✔ |
|
Multi Machine Distributed Service Balancing |
✘ |
✘ |
✔ |
|
Distributed Service Backup |
✘ |
✘ |
✘ |
|
Connectors |
|||
|
Syslog Connector |
✔ |
✔ |
✔ |
|
LEA API Connector |
✔ |
✔ |
✔ |
|
SSH Connector |
✔ |
✔ |
✔ |
|
File Reader - File Share Connector |
✔ |
✔ |
✔ |
|
WMI OS Connector (For Windows Systems) |
✔ |
✔ |
✔ |
|
WMI SQL Audit Connector |
✔ |
✔ |
✔ |
|
WMI Oracle Audit Connector |
✔ |
✔ |
✔ |
|
Websense Connector |
✔ |
✔ |
✔ |
|
SQL Direct Connector |
✘ |
Partial |
✔ |
|
Oracle Direct Connector |
✘ |
Partial |
✔ |
|
SNMP Trap |
✘ |
✘ |
✔ |
|
Event Normalization |
|||
|
Data Filtering |
✔ |
✔ |
✔ |
|
Data Redundancy |
✔ |
✔ |
|
|
Event Source Categorization |
✔ |
✔ |
✔ |
|
Event Classification and Taxonomy |
✔ |
✔ |
✔ |
|
Data Policy Manager |
✔ |
✔ |
✔ |
|
Structured Fields |
✔ |
✔ |
✔ |
|
Search |
|||
|
Filtering Search Results |
✔ |
✔ |
✔ |
|
Advanced Search |
✔ |
✔ |
✔ |
|
Drill Down Search |
✔ |
✔ |
✔ |
|
Generate Reports from Search Results |
✔ |
✔ |
✔ |
|
Search Results Analysis |
✔ |
✔ |
✔ |
|
Search API |
✘ |
✘ |
Optional |
|
Dashboard |
|||
|
Predefined Dashboard |
✔ |
✔ |
✔ |
|
User Friendly Dashboard Wizard |
✔ |
✔ |
✔ |
|
Widget Templates |
✔ |
✔ |
✔ |
|
Search |
✔ |
✔ |
✔ |
|
Super Tags/Profiles For Delegation |
✔ |
✔ |
✔ |
|
Drill Down Monitoring |
✔ |
✔ |
✔ |
|
Reporting |
|||
|
Over 500 Predefined Reports |
✔ |
✔ |
✔ |
|
Report Category Management |
✔ |
✔ |
✔ |
|
Generate Custom Reports |
✔ |
✔ |
✔ |
|
Super Tags/Profiles For Delegation |
✔ |
✔ |
✔ |
|
Your Company Logo at PDF Reports |
✔ |
✔ |
✔ |
|
Web Based Live Reporting |
✔ |
✔ |
✔ |
|
PDF-CSV Export |
✔ |
✔ |
✔ |
|
Drill Down Reporting |
✔ |
✔ |
✔ |
|
Report Templates |
✔ |
✔ |
✔ |
|
User Based Data Restriction |
✔ |
✔ |
✔ |
|
User Friendly Report Wizard |
✔ |
✔ |
✔ |
|
Compliance |
|||
|
PCI DSS, SOX, HIPAA, NERC, 5651, ISO 27K, FISMA, GLBA |
✔ |
✔ |
✔ |
|
Predefined Compliance Reports |
✔ |
✔ |
✔ |
|
Digital Certificate Integration |
✔ |
✔ |
✔ |
|
Time Stamp Integration (Turktrust, Digistamp etc.) |
✔ |
✔ |
✔ |
|
Data Policy Manager |
✔ |
✔ |
✔ |
|
Digital Hashing |
✔ |
✔ |
✔ |
|
Long Term Data Archiving |
✔ |
✔ |
✔ |
|
Alerts & Correlations |
|||
|
Correlation Rule Library |
✔ |
✔ |
✔ |
|
User Friendly Alert Wizard |
✔ |
✔ |
✔ |
|
Basic/Advanced/Correlated Alerts |
✔ |
✔ |
✔ |
|
Customizable Messages and Notifications |
✔ |
✔ |
✔ |
|
Statistical Alerts and Correlations |
✔ |
✔ |
✔ |
|
Real Time Data Flow Alerts and Correlations |
✔ |
✔ |
✔ |
|
Super Tags/Profiles For Delegation |
✔ |
✔ |
✔ |
|
SMS and Email Notification |
✔ |
✔ |
✔ |
|
Security Automation |
✔ |
✔ |
✔ |