Firewall

• NitroSecurity, NitroGuard IPS
• Check Point, Check Point Edge W32 and WU, opsec
• Check Point, Check Point Smart Center Enterprise Pro, opsec
• Check Point, Check Point Enterprise and Enterprise Pro, opsec
• Check Point, Check Point FW-1 Limited, v4.0(sp5), v41(sp1), opsec
• Check Point, Check Point FW1, NG, NGX Standard All versions, opsec
• Check Point, Check Point Express opsec
• Cisco, Cisco ASA v4.x -v7.x syslog
• Cisco, Cisco PIX 501, 505, 506, 506E, 515, 520, 535 v4.x -v7.x syslog
• CyberGuard, CyberGuard FS v4.2,v4.3, v5.0 syslog
• CyberGuard, CyberGuard SGv4.2,v4.3,v5.0, syslog
• CyberGuard, CyberGuard SL v4.2,v4.3,v5.0, syslog
• Fortinet, Fortinet FortiGate v2.5 and v2.8 syslog
• Gauntlet, Gauntlet Firewall syslog
• Juniper Networks, Juniper Netscreen Firewalls (all series) syslog
• Nokia, Nokia IP syslog
• Secure Computing, Sidewinder G2 syslog
• SonicWALL, Firewall v4.1 and v5.x syslog
• Symantec, Symantec Enterprise Firewall (syslog only) v7.04 syslog
• Symantec, Symantec Gateway Security (syslog only) v7.0 and v8.0 syslog
• Microsoft, ISA
• Microsoft, ISA Server
• Stonesoft, Stonegate Firewall
• Zonelabs, Integrity
  

VPN

• Check Point, Check Point VPN-1 Edge, v4.x, opsec
• Check Point, Check Point HA VPN-1 v4.0(sp5), v41(sp1), opsec
• Check Point, Check Point VPN Pro v4.0(sp5), v41(sp1), opsec
• Check Point, Check Point VPN-1 Express v4.0(sp5), v41(sp1) opsec
• Cisco, Cisco VPN Concentrator v4.x -v7.x syslog
• Juniper Networks, Juniper Netscreen SSL VPN syslog
• Nortel Networks, Contivity VPN syslog
• Microsoft, ISA
• Microsoft, ISA Server
• Symantec, Symantec Enterprise VPN
  

IDS / IPS

• NitroSecurity, NitroGuard IPS
• Cisco, Cisco IDS (4.x+ protocol) v4.2(2), RDEP, SDEE
• Cisco, Cisco IDS Stand-alone (3.x protocol), syslog
• Juniper Networks, Netscreen-IDP syslog
• McAfee, IntruShield / WebShield syslog
• Snort, IDS Sensor (all models) syslog
• SourceFire, NS syslog
• TippingPoint, TippingPoint Unity syslog
• TopLayer, TopLayer Attack Mitigator v3.x syslog
• SideWinder, All models All ver syslog
• Enterasys, Dragon 2.x and above
• Cisco, Cisco ACS
• Cisco, Cisco CSA
• Enterasys, Dragon
• Enterasys, Dragon Sensor
• Radware, DefensePro
• Stonesoft, Stonegate IPS
• Symantec, Symantec ManHunt
  

AntiVirus

• McAfee, Virus Scan 0
• Symantec, Symantec Anti Virus 0
• Symantec, Symantec Endpoint Security 0
• Trend Micro, Trend Micro Control Manager (IMSS, IWSS) 0
• Trend Micro, Trend Micro Control Manager 0
  

Authentication

• feed_item->{'vendor'}, Cyber Gatekeeper LAN
• feed_item->{'vendor'}, Authentication Manager
  

Database

• Microsoft, Microsoft SQL Server
• NetForensics, DataOne
• Oracle, Oracle
• Rippletech, Rippletech Informant
• NitroSecurity, NitroGuard Database Monitor
• Tripwire, Tripwire For Server
  

Host / Server

• Linux, Red Hat and Generic Linux formats, Redhat Enterprise 4.x and 5.x, Fedora 4.x, 5.x and 6.x
• Novell, Novell Netware Version 5.x through 6.5
• Microsoft, Windows (WMI)
• Apache, Apache
• Cisco, CatOS
• Cisco, Cisco CSA
• Entercept, Entercept HIDS
• HP, HP-UX (Hewlett-Packard)
• HP, HP-UX (Hewlett-Packard)
• HP, HP-UX (Hewlett-Packard)
• IBM, AIX OS
• IBM, AIX OS
• IBM, ISS Desktop Protector
• IBM, ISS Real Secure Server Sensor
• McAfee, ePolicy Orchestrator (EPO)
• Microsoft, IIS
• Microsoft, ISA
• Microsoft, Operations Manager
• Netscape, Enterprise Web Server
• Netscape, Enterprise Web Server
• Red Hat, Red Hat Linux OS Events
• Red Hat, Red Hat Linux OS Events
• Red Hat, Red Hat Linux OS Events
• Solaris, Solaris OS Events
• Solaris, Solaris OS Events
• Symantec, Symantec HIDS
• Symantec, Symantec Intruder Alert
• Type 80, SMA_RT
• Type 80, SMA_RT
  

Custom Device Support

• NitroSecurity, Custom Syslog Parser
  

Switches & Routers

• NitroSecurity, NitroGuard IPS
• Cisco, Cisco Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
• Cisco, Cisco 6xxx Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
• Cisco, Cisco 7xxx Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
• Hewlett Packard, HP ProCurve all models firmware 7.x and 8.x syslog
• Juniper Networks, Jun OS Routers
• Foundry, Pending support
• Extreme, BlackDiamond, Alpine and Summit versions 6.x and above
• Airdefense, Airdefense
• Arbor, Peakflow DoS
• Arbor, Peakflow X
• Cisco, CatOS
• Cisco, Cisco CCA
• Cisco, Cisco Clean Access
• Info Express, Cyber Gatekeeper LAN
• Juniper, Netscreen Security Manager
• LANcope, Stealth Watch
• Mirage, Counterpoint
• netIQ, Security Manager
  

Network Flow Collection

• NitroSecurity, nitroFlow
• Cisco, NetFlow
• sFlow, sFlow
• Juniper, jFlow
  
  

Security Appliances / UTMs

• WatchGuard, Firebox and X series firmware 4.x through 7.5
• Barracuda, All models firmware 2.x and above
  

Web Content, Filtering, Proxies

• IronMail, All models
• IronPort, All models
• McAfee, WebShield Version 1.8 and above
• BlueCoat, SG All models firmware 2.x and above
• Apache, Apache
• Cisco, Cisco Content Engine
• Microsoft, IIS
• Microsoft, ISA
• Microsoft, ISA Server
• Squid, Squid Proxy
• Websense, Websense Enterprise
  

Vulnerability Systems

• eEye, Retina Scanner
• Harris, Stat Scanner Professional Edition
• IBM, ISS Internet Scanner
• McAfee, Foundstone Scanner
• nCircle, IP360 Scanner
• Nessus, Nessus Scanner
• Qualys, Qualys Guard Scanner
• Trend Micro, Trend Micro Control Manager (IMSS, IWSS)
• Trend Micro, Trend Micro Control Manager
  

Other

• NitroSecurity, NitroSecurity SNMP
• Juniper Networks, IC4000, IC6000 V2.0
• Microsoft, Exchange 2000 and 2003 WMI
• BalaBit, Syslog NG Solaris 2.6, 2.7 (Unix) syslog
• Microsoft, Windows (WMI)
• Apache, Apache
• Entercept, Entercept HIDS
• IBM, ISS Desktop Protector
• IBM, ISS Real Secure Network Sensor
• McAfee, ePolicy Orchestrator (EPO)
• Symantec, Symantec HIDS
• Symantec, Symantec Intruder Alert
• Symantec, Symantec Mail Security for SMTP
• Tripwire, Tripwire NIDS