Overview
AlphaSOC ingests and analyzes telemetry from a diverse array of sources, empowering security teams across varied enterprise environments. Below is a list of officially supported data origins that include the range of cloud platforms, SaaS applications, network sensors, and more that AlphaSOC seamlessly integrates with:
- AWS CloudTrail
- AWS Elastic Kubernetes Service BETA
- AWS Route 53
- AWS VPC Flow
- Azure Kubernetes Service PLANNING
- Azure NSG Flow Logs DEPRECATED
- Azure VNet Flow
- GCP Cloud DNS
- GCP Kubernetes Engine
- GCP Security Operations BETA
- GCP VPC Flow
- Confluence PLANNING
- Corelight
- CrowdStrike FDR
- CoreDNS
- GitHub BETA
- Jira PLANNING
- Kubernetes
- Microsoft 365 PLANNING
- Microsoft Entra ID PLANNING
- Okta BETA
- Slack BETA
- Zeek
Custom Logs
Beyond the listed sources, AlphaSOC can ingest telemetry in any custom log format, ensuring flexibility for diverse data environments. Additionally, it supports Sigma, an open-source standard for crafting detection rules, empowering you to create custom detections that enhance your security capabilities across virtually any structured log data. After configuring your preferred transport method, you can write these custom Sigma rules to strengthen your security monitoring.
Need AlphaSOC to work with a unique log format? Contact support@alphasoc.com, and our team will collaborate with you to build a custom parser tailored to your needs.