=== Add-on Overview ===
The Alsid For AD Syslog Add-on provides value to Alsid's syslog logs.
It extracts the data you need from Alsid for AD and ensures compliance with the Common Information Model (CIM).
=== About Alsid ===
Alsid For AD hardens your Active Directory (AD) infrastructure,
enriches your SOC capabilities with AD attacks detection,
and empowers your incident response and hunting teams into investigating AD-related breaches.
Make AD security an integral part of your SOC processes through our integration with Splunk.
* Anticipating threats
Active Directory is an ever-evolving infrastructure that requires constant attention. Alsid For AD monitors your AD in real-time and uncovers misconfigurations and weaknesses as they happen. With our Splunk integration, receive our hardening notifications right where you expect them to be: in your SIEM, ready to be tackled.
* Detecting attacks
Our detection engine captures all attacks directed to Active Directory and prevent attackers from moving laterally and/or spreading their malware internally. Get your alerts delivered in real-time to your SIEM and make sure no incident is left unattended.
* Responding to breaches
Alsid is an AD-native solution which captures all AD-related events that are meaningful from a security perspective, and only those.
At last, forget about the mundane tasks of gathering and triaging Windows Events logs: focus immediately on what matters and supercharge your AD investigation capabilities.