LogRhythm Open Collector and Beats

The Open Collector brings modern logs, from cloud log sources, flat file, or other formats, into the LogRhythm SIEM.

LogRhythm Open Collector

The LogRhythm Open Collector brings modern logs, usually in JSON format, from cloud log sources, flat file, or other formats, into the LogRhythm SIEM. It is designed for easy mapping of JSON fields to the LogRhythm Schema Dictionary and Guide. The Open Collector uses Elastic Beats to grab the data from the device and pass it along to the Open Collector, where the normalization takes place. 

arrow AWS S3 Beat 6.1.4

Amazon Web Services (AWS) is a comprehensive cloud platform that offers more than 165 fully featured services, including: Enterprise file storage File sharing E …

arrow Azure Event Hubs Beat 6.0.2

Microsoft Azure Event Hubs is a fully managed, real-time data ingestion service that is simple, trusted, and scalable. It allows you to build real-time big da …

arrow Carbon Black Cloud Beat 6.0.2

Note: The Carbon Black Cloud Beat 6.0.0 currently supports the log collection via the Alerts API only (i.e. CB Analytics alerts and Watchlists alerts). Alerts A …

arrow Cisco AMP Beat 6.1.3

Cisco Advanced Malware Protection (AMP) for Endpoints is a cloud-based software-as-a-service (SaaS) endpoint security solution. Cisco AMP connectors are deploye …

arrow Duo Authentication Security Beat 6.0.3

Overview Duo provides modern access security designed to safeguard all users, devices, and applications. It also adds an extra layer for authentication via two- …

arrow Gmail Message Tracking Beat 6.0.1

Overview The goal of Gmail Message Tracking (GMT) is to enable logs for Gmail mailbox metadata, including sender, recipient, subject, message size, and attachme …

arrow GSuite Beat 6.0.2

This Beat leverages the GSuite Admin SDK Reports API https://developers.google.com/admin-sdk/reports/v1/get-start/getting-started. It can be used to audit the f …

arrow Kafka Beat 6.0.3

Apache Kafka is an event streaming platform. Kafka is a distributed system consisting of servers and clients that communicate via a high-performance TCP network …

arrow Okta Beat 6.0.1

Okta is the leading independent provider of identity for the enterprise. The Okta Identity Cloud enables organizations to both secure and manage their extended …

arrow PubSub Beat 6.0.1

Cloud Pub/Sub brings the flexibility and reliability of enterprise message-oriented middleware to the cloud. At the same time, Cloud Pub/Sub is a scalable, dura …

arrow Sophos Central Beat 6.0.1

Sophos Central is a unified online web console for managing all your Sophos products. The available products include: Intercept X Endpoint XG Firewall Web Prote …

arrow Webhook Beat 6.1.3

A webhook is a way for an application to provide real-time information to other applications. It is also referred to as a web callback or HTTP push API. A webh …

arrow More Information

The LogRhythm Community Open Collector downloads area provides access to installation files, release notes, and community posts related to the Open Collector and Beats.

arrow Download PDFs

This section provides downloadable PDFs of Open Collector and Beats documentation.

arrow