Get A Demo

Blumira SIEM+XDR Integrations

Blumira’s open, vendor-agnostic platform gives you more flexibility for your SMB budget. Integrate with multiple vendors to get hybrid coverage for cloud, endpoint, identity, servers, and more. With our cloud integrations, you’ll be up and running in minutes.

Cloud Services

Microsfot Azure

Azure AD Event Hubs

Cisco Umbrella

extrahop

Google Cloud Platform

Google Workspace

Google Workspace

Infoblox

Ivanti

LastPass

Microsoft 365

Microsoft Defender For Cloud Apps

Microsoft Defender For Cloud Apps

Microsoft

Microsoft Intune

Microsoft Intune

Mimecast

OKTA

1Password

zscaler

AWS

Integrations Page AWS

AWS: CloudTrail

Integrations Page AWS

AWS: CloudWatch

Integrations Page AWS

AWS: Getting Started Guide

Integrations Page AWS

Integrations Page AWS

AWS: Kinesis Data Stream and IAM

Integrations Page AWS

AWS: VPC Flow Logs

Endpoint Security

BB Cylance

BlackBerry Cylance

bitdefender

CrowdStrike

CrowdStrike Falcon Endpoint Protection

eset

ESET Endpoint Protection

Malwarebytes

Malwarebytes

Malwarebytes Nebula

M365 Defender

Microsoft 365 Defender

SentinelOne

Sophos

Symantec

Symantec Endpoint Security

Trend Micro

Trend Micro Apex One

Carbon Black

VMware Carbon Black App Control

Carbon Black

VMware Carbon Black Cloud Endpoint Standard

Webroot

Microsoft Windows

Windows

Advanced Microsoft Logging (GPO Template)

Poshim

Automating Windows Log Collection with Poshim

Windows AD

Microsoft Active Directory

Windows

Microsoft Windows Endpoints

Windows

Microsoft Windows Firewall

Windows

Microsoft Windows IIS

Windows Server

Microsoft Windows Server

Windows Server

System Monitor (Sysmon)

Microsoft Cloud

Poshim

Automating Windows Log Collection With Poshim

Microsfot Azure

Azure AD Events Hubs

Microsoft

Microsoft 365

M365 Defender

Microsoft 365 Defender

Microsoft Defender For Cloud Apps

Microsoft Defender for Cloud Apps

Microsoft

Microsoft Defender for Endpoint

Microsoft 365

Microsoft Defender for Identity

Microsoft Intune

Microsoft Intune

Identity Management

JumpCloud

LastPass

Windows AD

Microsoft Active Directory

Microsoft 365

Microsoft Defender for Identity

OKTA

OneLogin

1Password

SonicWall

SonicWall Secure Mobile Access

Firewall

Barracuda

CheckPoint

Check Point Next-Gen Firewall

Cisco

Cisco ASA Firewall

Cisco

Cisco FTD FirePower Threat Defense

Cisco Meraki

Cisco Meraki Firewall

Citrix

Citrix Netscaler ADC

Fortinet

Fortinet Fortigate Firewall

Paloalto

Palo Alto Networks Panorama

Paloalto

Palo Alto Next-Gen Firewall

PFSense

SonicWall

SonicWall Next-Gen Firewall

Sophos

Sophos XG Firewall

ubiquiti-networks

WatchGuard

WatchGuard Firebox Firewall

Other

Apache

Apache Web Server

cerberus

citrix

Citrix Application Delivery Controller (ADC)

Forescout

junipernetworks

Juniper Networks

junos

kaspersky

PhishER

KnowBe4 - PhishER

Linux

Linux Auditd File Integrity Monitoring

Linux

Linux Endpoints

Linux

Linux

MacOS

macOS Endpoints

mcafee

NGINX

Nginx Web Server

Osquery

ossec

ProofPoint

ProofPoint Advanced Threat Protection

Pulse Connect Secure

Pulse Connect Secure

riverbed

synology

VMWare

VMWare VSphere/VCenter

logstash

WinLogBeat Forwarding

PSA Integrations For MSPs

Blumira integrates with the PSA Tools for ticketing to streamline your workflows and improve efficiency.

CW Manage PSA (2)

ConnectWise PSA (Manage)

Additional Security Resources

View All Posts

Product Updates

6 min read | July 10, 2025

June 2025 Product Releases

Product Updates

2 min read | June 27, 2025

Webinar 7/17: Better Signal, Less Noise With New API and Detection Filter Enhancements

Catching Session Token Theft in Microsoft 365

Product Updates

6 min read | June 11, 2025

New Detection: Catching Session Token Theft in Microsoft 365

Get Started for Free

Experience the Blumira Free SIEM, with automated detection and response plus compliance reports for 3 cloud connectors.

Sign Up