Exabeam Data Sources.md

Exabeam Data Sources

Content Version:

The following list are the out-of-the-box supported Data Sources. This list is auto-generated by Vendor/Product fields of the Exabeam Content Parser Config Files.

Vendor	Product
Abnormal Security	Abnormal Security
Absolute	Absolute SIEM Connector
Accellion	Kiteworks
AccessIT	Universal.NET
Adaxes	Adaxes
Airlock	Web Application Firewall
Akamai	Akamai Siem Cloud Akamai
Alert Logic	Alert Logic
AlgoSec	Firewall Analyzer
AMAG	Symmetry Access Control
Amazon	AWS Bastion AWS CloudTrail AWS CloudWatch AWS GuardDuty AWS Redshift
Anywhere365	Anywhere365
Apache	Apache Apache Guacamole Apache Subversion Cassandra
APC	APC
Apple	macOS
AppSense Application Manager	AppSense Application Manager
Arbor	Arbor
Arista Networks	Awake Security
Armis	Armis
AssetView	AssetView
ASUPIM	ASUPIM
Atlassian	Atlassian BitBucket
Attivo	BOTsink
Auth0	Auth0
Avaya	Avaya Ethernet Routing Switch Avaya VPN
AVI Networks	Load Balancer
Axway	Axway SFTP
Badge	Badge
Badgepoint	Badgepoint
Barracuda	Barracuda Email Security Gateway Barracuda Firewall
BeyondTrust	BeyondTrust BeyondTrust PasswordSafe BeyondTrust PowerBroker BeyondTrust Privilege Management BeyondTrust Privileged Identity BeyondTrust Secure Remote Access
BIND	BIND
Bitdefender	GravityZone
Bitglass	Bitglass CASB
BlackBerry	BlackBerry Protect
BlueCat Networks	BlueCat Networks Adonis BlueCat Networks DHCP
Box	Box Cloud Content Management
Brivo	Brivo
Bromium	Bromium Advanced Endpoint Security Bromium Secure Platform
CA Technologies	CA Privileged Access Manager Server Control
Carbon Black EDR	Carbon Black EDR
CatoNetworks	Cato Cloud
CDS	CDS
CenturyLink	Adaptive Threat Intelligence
Check Point	Endpoint Security Identity Awareness NGFW Security Gateway Security Gateway Virtual Edition (vSEC) Threat Prevention
Cimtrak	Cimtrak
Cisco	ACI ACS Adaptive Security Appliance ADC Advance Malware Protection (AMP) Airespace AnyConnect Call Manager Cisco Cisco Secure Email Cloud Web Security CloudLock Console DHCP Duo Access Security Firepower IronPort Email IronPort Web Security ISE Meraki MX appliances Netflow NPE Proxy Umbrella Secure Email Secure Endpoint Secure Network Analytics Secure Web Appliance TACACS Umbrella
Citrix	Citrix AppFW Citrix Endpoint Management Citrix Gateway ActiveSync Connector Citrix Netscaler Citrix Netscaler VPN Citrix ShareFile Citrix XenApp Citrix XenDesktop Netscaler WAF Web Logging
Clearsense	Clearsense
Clearswift SEG	Clearswift SEG
Cloud Application	Cloud Application
Cloudflare	Cloudflare CDN Cloudflare Insights Cloudflare WAF
Code42	Code42 Incydr
Cofense	Phishme
Cognitas CrossLink	Cognitas CrossLink
Contrast Security	Contrast Security
CrowdStrike	Falcon
CyberArk	CyberArk Vault Endpoint Privilege Management Privileged Session Manager Privileged Threat Analytics
Cybereason	Cybereason
Damballa	Failsafe
Darktrace	Darktrace Darktrace Enterprise Immune System
Datawatch Systems	DataWatch
Delinea	Centrify Audit and Monitoring Service Centrify Authentication Service Centrify Infrastructure Services Centrify Zero Trust Privilege Services Secret Server
Dell	EMC Isilon One Identity Manager RSA Authentication Manager SonicWALL Aventail
Digital Arts	Digital Arts i-FILTER for Business
Digital Guardian	Digital Guardian Endpoint Protection Digital Guardian Network DLP
Dropbox	Dropbox
Dtex Systems	DTEX InTERCEPT
EdgeWave	EdgeWave iPrism
eDocs	eDocs
Egnyte	Egnyte
EMP	EMP
Endgame	Endgame EDR
EndPoint	EndPoint
EnSilo	EnSilo
Entrust	IdentityGuard
Epic	Epic SIEM
ESector	ESector DEFESA
ESET	ESET Endpoint Security
Exabeam	Exabeam Advanced Analytics Exabeam DL
Extrahop	Reveal(x)
Extreme Networks	Zebra wireless LAN management
F-Secure	F-Secure Client Security
F5	BIG-IP DNS F5 Advanced Web Application Firewall (WAF) F5 BIG-IP F5 BIG-IP Access Policy Manager (APM) F5 BIG-IP Advanced Firewall Module (AFM) F5 BIG-IP Application Security Manager (ASM) F5 IP Intelligence F5 Silverline WebSafe
Fast Enterprises	Fast Enterprises GenTax
Fidelis	Fidelis Network Fidelis XPS
FileAuditor	FileAuditor
FireEye	FireEye Email Gateway FireEye Email Security (EX) FireEye Email Threat Prevention (ETP) FireEye Endpoint Security (CM) FireEye Endpoint Security (HX) FireEye Helix FireEye Network Security (Helix) FireEye Network Security (NX)
Forcepoint	Forcepoint CASB Forcepoint DLP Forcepoint Email Security Forcepoint Insider Threat Forcepoint NGFW Websense ESG Websense Secure Gateway
Forescout	EyeInspect Forescout CounterACT
Fortinet	FortiAuthenticator Fortinet Enterprise Firewall Fortinet FortiWeb Fortinet UTM Fortinet VPN
FTP	FTP
Galaxy	Galaxy
Gallagher	Access Control
Gamma	Gamma
Gemalto	Gemalto MFA
Generic Badge Access	Generic Badge Access
GitHub	GitHub
GoAnywhere	GoAnywhere MFT
Google	Cloud Platform Workspace
GTB	GTBInspector
HashiCorp	HashiCorp Vault Terraform
HelpSystems	Powertech Identity Access Manager (BoKs)
Honeywell	Honeywell Pro-Watch honeywell siama Honeywell WIN-PAK
Hornet	Hornet Email
HP	Aruba ClearPass Access Control and Policy Management Aruba Mobility Master Aruba Wireless controller HP Comware HP iLO HP LaserJet Printer HP SafeCom HP Virtual Connect Enterprise Manager Print Server
Huawei	Enterprise Network Firewall Unified Security Gateway
IBM	Guardium IBM IBM DB2 IBM Endpoint Manager IBM Lotus Notes IBM Racf IBM Sametime IBM Security Access Manager IBM Sense IBM Sterling B2B Integrator Infosphere Guardium Lotus Mobile Connect Proventia Network IPS QRadar Network Security
iBoss	Secure Web Gateway
ICDB	ICDB
ICPAM	ICPAM
Illumio	Illumio
iManage	iManage
Imperva	Attack Analytics CounterBreach Imperva File Activity Monitoring (FAM) Imperva SecureSphere Incapsula
Imprivata	Imprivata
IMSS	IMSS
IMSVA	IMSVA
Infoblox	BloxOne NIOS
InfoWatch	InfoWatch
Inky	Inky Anti-Phishing
Ipswitch	IPswitch MoveIt MoveIt DMZ
IPTables	IPTables
IronNet	IronDefense
IXIA	IXIA ThreatArmor
JH	JH
Johnson Controls	Johnson Controls P2000
jSONAR	SonarG
Juniper Networks	Juniper Networks Juniper Networks ATP Juniper Networks Pulse Secure Juniper OWA Juniper SRX Juniper VPN
KABA EXOS	KABA EXOS
Kaspersky	Kaspersky AV Kaspersky Endpoint Security for Business
Kemp	Kemp LoadMaster Load Balancer
LanScope	LanScope Cat
LastPass	LastPass
LEAP	LEAP
Lenel	Lenel OnGuard OnGuard
Lexmark	Lexmark
Linux	Linux CentOs Linux DHCP SSH
LiquidFiles	LiquidFiles
LOGBinder	SharePoint
LogMeIn	RemotelyAnywhere
LogRhythm	LogRhythm
Lumension	Lumension
Lyrix	Lyrix
Malwarebytes	Malwarebytes Endpoint Protection Malwarebytes Incident Response
MariaDB	MariaDB
MasterSAM	MasterSAM PAM
McAfee	McAfee Advanced Threat Defense McAfee DLP McAfee Email Protection McAfee Endpoint Security McAfee Enterprise Security Manager Mcafee EPO McAfee IDPS McAfee Network Security Platform (IPS) McAfee NSM McAfee Solidifier McAfee Web Gateway MDAM Skyhigh Networks CASB
Medigate	Medigate
Microsoft	365 Defender Advanced Threat Analytics (ATA) Advanced Threat Protection AppLocker Azure Azure Active Directory Azure AD Identity Protection Azure Advanced Threat Protection Azure MFA Azure Security Center Azure Sentinel Cloud App Security (MCAS) Defender Antivirus Defender ATP DirectAccess Exchange IIS Network Policy Server Office 365 OneDrive Routing and Remote Access Service SQL Server Sysmon Web Application Proxy Web Application Proxy-TLS Gateway Windows Windows Defender Windows DNSServer Windows PrintService
Mimecast	Email Security Targeted Threat Protection - URL
MobileIron	MobileIron
MongoDB	MongoDB
Morphisec	Morphisec EPTP
MSDHCP	MSDHCP
Mvision	Mvision
Mysql	Mysql
N3K	N3K
Namespace rDirectory	Namespace rDirectory
Nasuni	Nasuni
NCP	NCP
NetApp	NetApp
NetDocs	NetDocs
NetIQ	NetIQ
NetMotion Wireless	NetMotion Wireless
Netskope	Security Cloud
Netwrix	Netwrix Auditor
Nexthink	Nexthink
NNT	NNT ChangeTracker
Nokia VitalQIP	Nokia VitalQIP
Nortel Contivity	Nortel Contivity VPN
Novell	eDirectory
ObserveIT	ObserveIT
Okta	Okta Adaptive MFA
Onapsis	Onapsis
OneLogin	OneLogin
OneSpan	Digipass OneSpan
OpenDJ	OpenDJ LDAP
Oracle	Access Manager AVDF Oracle Database Public Cloud Solaris
Ordr	Ordr SCE
Osirium	Osirium
OSSEC	OSSEC
oVirt	oVirt
Palo Alto Networks	Cortex XDR GlobalProtect Magnifier NGFW Palo Alto Aperture Prisma Cloud Traps WildFire
Password Manager Pro	Password Manager Pro
Paxton	NET2DOOR
Perforce	Perforce
pfSense	pfSense
Phantom	Phantom
Pharos	Pharos
PicturePerfect	PicturePerfect
Ping Identity	Ping Identity PingOne
Portnox	Portnox CLEAR
Postfix	Postfix
PostgreSQL	PostgreSQL
PostScript	PostScript
PowerSentry	PowerSentry
Procad	Pro.File DMS
Progress	Progress Database
Proofpoint	ObserveIT Proofpoint CASB Proofpoint DLP Proofpoint Enterprise Protection Proofpoint TAP Proofpoint TAP/POD
ProxySG	ProxySG
Qualys	Qualys
Quest InTrust	Quest InTrust
Quest Software	Change Auditor
Radius	Radius
RangerAudit	RangerAudit
Rapid7	InsightVM Nexpose
Red Canary	Red Canary
RedCloud	RedCloud
Ricoh	Ricoh
RightCrowd	RightCrowd
RS2	RS2 RS2 Technologies
RSA	RSA RSA Authentication Manager RSA DLP RSA ECAT RSA NetWitness SecurID
Ruckus	Ruckus
RUID	RUID
Safend	Data Protection Suite (DPS)
SafeSend	SafeSend
Sailpoint	FAM IdentityNow SecurityIQ
Salesforce	Salesforce
Sangfor	NGAF
SAP	SAP
Seclore	Seclore
Secure Computing	Secure Computing SafeWord
Secure Envoy	Secure Envoy
SecureAuth	SecureAuth Login
SecureLink	SecureLink
SecureNet	SecureNet
SecureWorks	iSensor IPS
SecurityExpert	SecurityExpert
Sensormatik	Sensormatik
SentinelOne	SentinelOne Singularity
ServiceNow	ServiceNow
SFTP	SFTP
Shibboleth	Shibboleth IdP Shibboleth SSO
Siemens	Siemens
SIGSCI	SIGSCI
Silverfort	Silverfort
SiteMinder	SiteMinder
SkySea	ClientView
Slack	Slack
Snort	Snort
Snowflake	Snowflake
Sonicwall	Sonicwall
Sophos	Sophos Endpoint Protection Sophos Firewall Sophos Invincea Sophos SafeGuard Sophos UTM Sophos XG Firewall
Specops	Specops Password Reset
Splunk	Splunk Stream
Squid	Squid
SSL Open VPN	SSL Open VPN
StealthBits	StealthIntercept
Sun One	LDAP
Suricata	Suricata Suricata IDS
Swift	Swift
Swipes	Swipes
Swivel	Swivel
Sybase	Sybase
Symantec	Symantec Symantec Advanced Threat Protection Symantec Blue Coat Content Analysis System Symantec Blue Coat ProxySG Appliance Symantec Brightmail Symantec CloudSOC Symantec Critical System Protection Symantec DLP Symantec EDR Symantec Email Security.cloud Symantec Endpoint Protection Symantec Endpoint Protection Mobile Symantec Fireglass Symantec Managed Security Services Symantec Secure Web Gateway Symantec VIP Symantec WSS
Synology NAS	Synology NAS
Tanium	Endpoint Platform Integrity Monitor Threat Response
Tenable.io	Tenable.io
Teradata	Teradata RDBMS
TimeLox	TimeLox
TitanFTP	TitanFTP
TrapX	TrapX
Trend Micro	Apex One Cloud App Security Deep Discovery Email Inspector Deep Discovery Inspector Deep Security Agent InterScan Web Security OfficeScan ScanMail TippingPoint NGIPS Trend Micro
Tripwire Enterprise	Tripwire Enterprise
Tufin	SecureTrack
Tyco	CCURE Building Management System
Unix	Auditbeat Unix Unix Auditd Unix dhcpd Unix Privilege Management Unix Sendmail
USB	USB
Vanderbilt	Vanderbilt
Varonis	Data Security Platform
VBCorp	VBCorp
Vectra	Vectra Cognito Detect Vectra Cognito Stream
Virtru	Virtru
Viscount	Viscount
Visma	Megaflex
VMS Software	OpenVMS
VMware	AirWatch Carbon Black App Control Carbon Black Cloud Endpoint Standard Carbon Black Cloud Enterprise EDR Carbon Black EDR NSX Advanced Threat Prevention NSX FW VMware ESXi VMware Horizon VMWare ID Manager (VIDM) VMware NSX VMware VCenter VMware View
Vormetric	Vormetric
Watchguard	Watchguard
Weblogin	Weblogin
Workday	Workday
Xceedium	Xceedium
Xerox	Xerox
XPS	XPS
xsuite	xsuite
Zeek	Zeek Network Security Monitor
Zlock	Zlock
Zoom	Zoom
Zscaler	Zscaler Internet Access Zscaler Private Access