syslog-ng by One Identity

syslog-ng is a log management solution formerly from Balabit and now part of One Identity, that aims to improve the performance of SIEM solution by reducing the amount and improving the quality of data feeding the SIEM solution. Syslog-ng can deliver data from a wide variety of sources to Hadoop, Elasticsearch, MongoDB, Kafka and others. It routes log data from X sources to Y destinations. Instead of deploying multiple agents on hosts, organizations can unify their log data collection and management.

Syslog-ng Store Box is a log management appliance option, that provides secure, tamper-proof storage and custom reporting to demonstrate compliance. Syslog-ng Store Box provides automated archiving, tamper-proof encrypted storage, granular access controls to protect log data. The largest appliance can store up to 10TB of raw logs.

And with syslog-ng open source edition, the user can collect logs from any source, process them in real time and deliver them to a wide variety of destinations. syslog-ng allows users to collect, parse, classify, rewrite and correlate logs from across infrastructure and store or route them to log analysis tools.