Search and Visualize Security Data
InsightIDR can ingest both structured and unstructured data for multiple purposes, ranging from incident investigation & hunting to data visualization and compliance. In this use case, let's look at example types of data, the automatic enrichment that happens, and how you can build dashboards to assess risk and report across your organization.
We'll start by searching across Firewall logs to find the users that have generated the most events.
Flexible Data Collection
InsightIDR will integrate with your existing network and security stack, ranging from authentication logs to firewall, web proxy, or an existing log aggregator or SIEM.
If the data is unstructured, you can still search across that data and create custom alerts using a simple query language.