Vendor log mapping out-of-the-box
| Activemq | Apache | Auditd | Aws | Awsfargate | Azure | Barracuda | Bluecoat | Cef | Checkpoint |
| Cisco | Citrix | Coredns | Crowdstrike | Cyberark | Cyberarkpas | Cylance | Elasticsearch | Envoyproxy | f5 |
| Fortinet | Gcp | Google_workspace | Googlecloud | Gsuite | Haproxy | Ibmmq | Icinga | iis | imperva |
| infoblox | iptables | Juniper | kafka | logstash | microsoft | misp | mongodb | mssql | mysql |
| Mysqlenterprise | nats | netscout | nginx | o365 | okta | oracle | osquery | Panw | pensado |
| postgresql | proofpoint | rabbitmq | radware | redis | santa | Snort | snyk | sonicwall | sophos |
| squid | suricata | symantec | system | Threatintel | tomcat | traefik | zeek | zookeper | zoom |
| zscaler | | | | | | | | | |
