SIEM with Graylog

Labidi · April 22, 2019, 7:36am

Hi everyone,
can I make a SIEM solution with graylog, I collect the logs of several devices with graylog I want to normalize the logs and put them in the same format. (standardization of lgs in the same format ) ? or is there a solution or module that can be integrated with graylog to make a SIEM solution.

macko003 · April 23, 2019, 9:17am

I don’t know an out of the box solution.

You can normalize the logs with extractors and pipelines, and after you can make alerts.
But I think oit won’t be a SIEM.

Labidi · April 23, 2019, 2:35pm

http://docs.graylog.org/en/3.0/pages/extractors.html
with extractors I can normalize the logs ??

Labidi · April 23, 2019, 3:11pm

it’s complicated to work with extractors , in the site the part “Extractors” is not well explained

macko003 · April 23, 2019, 3:23pm

The docs are free to edit.
You can do a well discribed page.

GL is not a SIEM.

system · May 7, 2019, 3:23pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
SIEM open source and Graylog Graylog Central (peer support)	2	619	April 9, 2020
Using Graylog as a SIEM Graylog Central (peer support) sidecar	1	689	June 16, 2020
Using Graylog as a Data Lake and forwarding logs to SIEM based on the use cases implemented Graylog Central (peer support)	3	1800	November 25, 2022
Help setting up Graylog Storage Graylog Central (peer support)	2	330	May 18, 2023
Graylog Office 365 Graylog Central (peer support)	8	1604	March 14, 2019

SIEM with Graylog

Related topics