ATD系统支持近500种日志的智能解析,详细类型如下:
a10-thunder-waf
actiontec
adaudit-plus
aerohive-wap
airlock
airport-extreme
aix-audit
aladdin
alcatel
allot
alteonos
amun-honeypot
apache-ldap
apache-syslog
apache-tomcat
apache
arista-switch
arpalert-idm
arpalert-syslog
array-networks-sag
artemisa
artica
artillery
aruba-6
aruba-airwave
aruba-clearpass
aruba
as400
ascenlink
assp
asterisk-voip
asus-router
av-nf-alert
av-useractivity-syslog
av-useractivity
avast
avaya-gateway
avaya-wireless
avaya
axigen-mail
barracuda-link-balancer
barracuda-ng
barracuda-spam
barracuda-sslvpn
barracuda-waf
barracuda-webfilter
bind
bit9
bit9_v7
blackboard-learn
bluecoat
bomgar
bro-ids
brocade
carbonblack-idm
carbonblack
cb-defense
cerberus-ftp
checkpoint-mepp
cisco-3030
cisco-ace
cisco-acs-idm
cisco-acs
cisco-asa
cisco-asr
cisco-call
cisco-cucm
cisco-esa
cisco-firepower
cisco-firesight
cisco-fw
cisco-ids
cisco-ips-syslog
cisco-ips
cisco-isa
cisco-ise
cisco-meraki
cisco-nexus-nx-os
cisco-ngips
cisco-pix
cisco-router
cisco-rv
cisco-ucs
cisco-vpn
cisco-wlc
citrix-netscaler
clamav
clamwin-nxlog
clearswift
cloudpassage
clurgmgr
comodo-antivirus
corero-ips
courier
crowdstrike
crushftp
cyberark
cyberguard
cyberoam
cylance
cyphort
darktrace
datto-siris
deepsec-agent
deepsec-manager
defender-tokengo
dell-chassis
dell-equallogic
dell-force
dell-secureworks
denyall-waf
dhcp-nxlog
dhcp
dlink-firewall
dlink-wireless
dovecot
dragon
draytek-vigor
drupal-wiki
dtex
eljefe
emc-isilon
emc-recoverpoint
emc-vnxe
emet
enterasys-rmatrix
eset
exchange-nxlog
exchange
extreme-switch
extreme-wireless
f5-firepass
f5
fail2ban
failsafe
falconstor
fatpipe-mpvpn
fidelis
fireeye-cm
fireeye-hx
fireeye
forescout-nac
fortiWLC
fortiauthenticator
fortigate
fortiguard
fortimail
fortiweb
freeipa
freeradius
fw1-alt
gfi
glastopng
gta-firewall
h3c-ap
h3c-switch
ha-proxy
harpp-ddos
heartbeat
hitachi-hnas
honeybot
honeyd
hp-chassis
hp-eva
hp-msm-controller
hp-san-switch
hp-switch
hp-wireless
huawei-ips
huawei-router
huawei
ibm-imm
ibm-tam
ibm-websphere
iboss
iis-nxlog
iis
imperva-securesphere
impravata-onesign
incapsula
infoblox
intrushield
ipfw
iprism
iptables
ironport
isa
jboss
juniper-ex
juniper-idp
juniper-mx
juniper-nsm
juniper-srx
juniper-vpn
kaspersky-sc-db
kaspersky-sc
kaspersky
kemp
kerio-connect
kismet
linux-usergroupadd
linuxdhcp-idm
linuxdhcp
logbinder-sp
lucent-brick
m0n0wall
malwarebytes-br
malwarebytes-es
malwarebytes
mcafee-antispam
mcafee-db
mcafee-epo
mcafee-mwg
mcafee-nsp
mcafee
meru
microsoft-ata
mikrotik-router
mobileiron-sentry
modsecurity
monit
moodle
motorola-firewall
motorola_rfs4000
ms-sccm
mssql-audit
mssql-nxlog
multifactor-auth
mwcollect
nagios
naxsi
nepenthes
nessus-detector
nessus
netasq-u
netgear-switch
netgear
netkeeper-fw
netkeeper-nids
netmotion-mobility
netscreen-firewall
netscreen-igs
netscreen-manager
netscreen-nsm
netvanta
netwrix-activity-nxlog
nfs
nginx
nimble-storage
nmap-hosts
nmap-monitor
nortel-baystack
nortel-switch
nps-logging
ntpdate
ntsyslog
nxlog
o365-asm
ocs-monitor
opendns
openldap
opennms-monitor
openswan
optenet
oracle-jde
oracle-syslog
oracle-weblogic
os-x
osiris
osquery
ossec-idm-single-line
ossec-single-line
ossim-agent
ossim-monitor
owncloud
packetfence
packetwave
palerra
paloalto-traps
paloalto
pam_unix
panda-as
panda-se
password-manager-pro
passwordstate
pf
ping-monitor
post_correlation
postfix
postgresql
powerdns
prads
prads_eth0
pravail-aps
proftpd
proofpoint-ps
proofpoint-tap
proxim-orinoco
pureftpd
purestorage-purity
qnap-qts
quickheal-blockedapp
quickheal-fileact
quickheal-firewall
quickheal-vulscan
radiator
radware-ips
rapid7
raslogd
realsecure
redhat-audit
redtrust
rrd
rsa-authentication-manager
rsa-secureid
rsa-securid-idr
ruckus
samhain
sangfor
sap
scom-nxlog
secret-server
secureauth
sendmail
sentinelone
serviceguard
shorewall
shrubbery-tacacs
sidewinder
silvershield
siteminder
siteprotector-iss
siteprotector-snmp
siteprotector
sitescope
smbd
snare-idm
snare-mssql
snare-msssis
snare
snort_syslog
sonicwall-vpn
sonicwall
sophos-central
sophos-ec
sophos-es
sophos-mssql
sophos-utm
sophos-ws
sophos-xg
sophos
sourcefire-ids
spamassassin
spamtitan
squid
squidGuard
ssh-remote
ssh
stealthintercept
stealthwatch
stonegate
stonegate_ips
storewize-V7000
stormshield
sudo
suhosin
suricata-eve
suricata-http
suricata
symantec-ams
symantec-atp
symantec-epm
symantec-mg
synology
syslog
sysmon-nxlog
tacacs-plus
tanium
tarantella
tcptrack-monitor
tesserent-ng
tippingpoint
token-rsa
trendmicro-cm
trendmicro-ddi
trendmicro-vp
trendmicro
triton
trustwave
tufin
ubiquiti-toughswitch
ubiquiti-unifi
untangle-ngfw
usbudev
vandyke-vshell
vectra
vipre
vmware-esxi
vmware-sso
vmware-vcenter-sql
vmware-vcenter
vmware-view-admin
vmware-vshield
vmware-workstation
vormetric-dsm
vplus
vsftpd
vyatta
watchguard-xcs-mg
watchguard
webmin
webroot-flowscape
websense-content
websense-esg
websense
websense7
whois-monitor
windns-nxlog
windns
windows-fw-nxlog
winftp-nxlog
wing-ftp-server
wmi-application-logger
wmi-monitor
wmi-security-logger-srv2008
wmi-security-logger
wmi-system-logger
wuftp
yara
zerofox
zscaler
zyxel-firewall