Azure AD Event Hubs
Cisco Umbrella
Duo Security
Google Workspace
Infoblox
Ivanti
LastPass
Microsoft 365
Microsoft 365 Defender
Microsoft Defender for Cloud Apps
Microsoft Intune
Mimecast
Okta
AWS: CloudTrail
AWS: CloudWatch
AWS: Getting Started Guide
AWS: GuardDuty
AWS: Kinesis Data Stream and IAM
AWS: VPC Flow Logs
Blackberry Cylance
CrowdStrike Falcon Endpoint Protection
ESET Endpoint Protection
Malwarebytes
Malwarebytes Nebula
SentinelOne
Sophos Central
Symantec Endpoint Security
Trend Micro Apex One
VMware Carbon Black App Control (formerly CB Protection)
VMware Carbon Black Cloud Endpoint Standard (formerly Carbon Black Defense)
Webroot
Advanced Microsoft Logging (GPO Template)
Automating Windows log collection with Poshim
Microsoft Active Directory
Microsoft Windows Endpoints
Microsoft Windows Firewall
Microsoft Windows IIS
Microsoft Windows PowerShell
Microsoft Windows Server
System Monitor (Sysmon)
Microsoft Defender for Identity
JumpCloud
OneLogin
Barracuda WAF
Check Point Next-Gen Firewall
Cisco ASA Firewall
Cisco FTD FirePower Threat Defense
Cisco Meraki Firewall
Citrix Netscaler ADC
F5 Big-IP
Fortinet Fortigate Firewall
Palo Alto Networks Panorama
Palo Alto Next-Gen Firewall
pfSense
SonicWall Next-Gen Firewall
Sophos XG Firewall
WatchGuard Firebox Firewall
Apache Web Server
Forescout
Judy Security Logs
KnowBe4 – PhishER
Linux Auditd File Integrity Monitoring
Linux Endpoints
Linux Journald
Linux Servers
macOS Endpoints
Nginx Web Server
Osquery
Proofpoint Advanced Threat Protection
VMware VSphere/VCenter
WinLogBeat Forwarding