Resources & Documents

Comprehensive analysis of SmokeLoader malware family, its evolution, and threat landscape

Advanced Remote Access Trojan with Persistent Surveillance Capabilities

Advanced Information Stealer with Multi-Platform Targeting Capabilities

Evolution, Capabilities, and Threat Analysis of the DRATzarus (ThreatNeedle) Malware Family

Evolution, Capabilities, and Threat Analysis of the GolangGhost Malware Family

Evolution, Capabilities, and Threat Analysis of the DarkGate Malware Family

Evolution, Capabilities, and Threat Analysis of the Supper Malware Family

Evolution, Capabilities, and Threat Analysis of the Lumma Stealer Malware Family

Evolution, Capabilities, and Threat Analysis of the Mimikatz Credential Stealer

Evolution, Capabilities, and Threat Analysis of the Cobalt Strike Framework

Evolution, Capabilities, and Threat Analysis of the Ghost RAT Malware Family

Comprehensive Malware Analysis of the InvisibleFerret Backdoor in Lazarus Group Operations

Evolution, Capabilities, and Threat Analysis of the Quasar Malware Family

Learn why logging needs evolved, where legacy tools fail, and what to expect from a modern solution with hot multi-year retention and no ingestion penalties.

Evolution, Capabilities, and Threat Analysis of the SystemBC Malware Family

Cloud-based security platform integration that protects applications and APIs from web threats including DDoS attacks, SQL injection, and credential abuse through Akamai's SIEM API.

AWS vulnerability management service integration that automatically scans AWS workloads including EC2 instances, ECR container images, and Lambda functions for software vulnerabilities and network exposure.

Comprehensive integration with AWS CloudTrail for security and compliance monitoring.

Seamless integration with AWS CloudWatch for monitoring and observability.

Native integration with AWS GuardDuty for comprehensive threat detection and security monitoring.

Real-time data streaming integration with AWS Kinesis.

Secure and scalable blob storage integration with Azure Blob Storage for log ingestion and data processing using Event Grid and Storage Queues.

High-throughput event streaming integration with Azure Event Hub for real-time data ingestion and processing.

Endpoint protection and detection platform integration with Cisco Secure Endpoint (formerly AMP for Endpoints) for comprehensive security monitoring and threat detection.

Cloudflare Logpush Connector for forwarding logs from Cloudflare Logpush API to DNIF, supporting multiple datasets including Zero Trust Network Session Logs, Audit logs, and Gateway logs.

AI-powered Digital Risk Monitoring platform integration that provides real-time visibility of cyber threats and actionable intelligence through CloudSEK's Alerts API.

Integration with Google Cloud Platform activity logs for security monitoring.

Real-time messaging and event streaming with Google Cloud Pub/Sub.

Comprehensive integration with Google Workspace services including Gmail, Drive, Calendar, and Admin SDK for security monitoring and compliance.

Identity and access management integration with Jumpcloud.

Security monitoring and threat detection for Microsoft Exchange Online environments.

Integration with Microsoft Sentinel for advanced security analytics and threat intelligence.

Cloud-based business email service integration offering secure webmail, file sharing, video conferencing, and messaging capabilities with comprehensive mail flow and activity logging.

Comprehensive security integration with Sophos endpoint protection.

Vulnerability management and security monitoring integration with Tenable Security Center.

Advanced threat detection and response integration with Trend Micro Vision One.

Evolution, Capabilities, and Threat Analysis of the Volgmer Malware Family