Supported Products
Overview
Hunters Supported Products Matrix explained:
The Hunters Supported Products Matrix encapsulates all of the different data types supported by the Hunters platform for ingestion. These range from cloud data types based on various APIs (e.g., Okta) and up to on-premise data types (e.g., Windows Event Logs).
The matrix comprises of the following columns:
Vendor / Product
Source
Supported Collection
Supported Format
Vendor / Product
The technology or product supported by Hunters for ingestion.
Source
Whether the collection of the data type is on-premise or cloud-based (e.g., Blob Storage or API).
Cloud
Some data types are based solely on inherent cloud infrastructure, such as different Cloud Infrastructure providers, or different vendors and SaaS technologies. Therefore, these are collected from a cloud infrastructure rather than on-premise.
On-Premise
While many technologies today have external APIs which allow for an effective data collection, some technologies still reside inside the network, and require the utilization of a log forwarding infrastructure to allow for the shipping of such data. Such on-premise technologies are denoted in this list as On-Premise. For a recommendation of log forwarding infrastructure and how to set it up for your organization, please see the following resource.
Supported Collection
The supported methods of collecting the logs.
Example: If a particular product has an API, yet under the Supported Collection only S3 Bucket is listed - It means Hunters does not currently support collecting directly from the API, and requires the files to reside in S3, in their proper expected format (see next bullet).
The collection from some vendors/technologies may still be considered to be under BETA support, and is utilized by Hunters next-generation ingestion infrastructure consisting of generic API collector such as Pullers or Streamers. While such collection methods may be utilized by Hunters for the ingestion of some log types, it is considered BETA and may not meet GA quality (e.g., performance, monitoring etc.).
Supported Format
Many technologies may have different ways of shipping their logs, whether it is CEF, CSV, NDJSON and so on. For each technology or product, it is stated what format is currently supported by Hunters.
Note: A specific technology is considered fully supported by Hunters only when all requirements of the Supported Collection and Supported Format have been met.
Supported Products
Below is a list of all products with their respective currently supported collection methods and formats.
API Security | |||
---|---|---|---|
Vendor / Product | Source | Supported Collection | Supported Format |
Cloud | API | NDJSON | |
Cloud | Vendor Ingestion | Snowflake-direct |
Cloud Infrastructure | |||
---|---|---|---|
Vendor / Product | Source | Supported Collection | Supported Format |
Cloud | Blob Storage | JSON | |
Cloud | Blob Storage | JSON | |
Cloud | Blob Storage | CSV | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | CSV | |
Cloud | Blob Storage | NDJSON | |
Cloud | Topic (BETA) / Blob Storage | NDJSON | |
Cloud | Topic (BETA) / Blob Storage | NDJSON | |
Cloud | Topic (BETA) / Blob Storage | NDJSON | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | NDJSON |
Container Infrastructure | |||
---|---|---|---|
Vendor / Product | Source | Supported Collection | Supported Format |
Cloud | Blob Storage | NDJSON |
Cloud Security Posture Management (CSPM) | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
Cloud | Webhook (BETA) / Blob Storage | NDJSON | |
Cloud | Webhook (BETA) / Blob Storage | NDJSON | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | JSON |
Email Security | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
Cloud | API | API Native | |
Cloud | API (BETA) / Blob Storage | Cyren SIEM API | |
On-Premise | Blob Storage | NDJSON | |
Cloud | API | KEY-VALUE, NDJSON | |
Cloud | API / Blob Storage | NDJSON |
Endpoint Management and EDR | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
Cisco Secure Endpoint (AMP) | Cloud | Cisco Stream API | API Native |
Cloud | FDR, Stream API | NDJSON | |
Cloud | API | NDJSON | |
On-Premise | Blob Storage | KEY-VALUE | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | NDJSON | |
Cloud | API / Blob Storage | NDJSON | |
Cloud | API / Blob Storage | NDJSON | |
On-Premise | Blob Storage | KEY-VALUE | |
Cloud | API | API Native |
Enterprise Collaboration Software | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
Cloud | Blob Storage | NDJSON | |
Cloud | API | NDJSON | |
Cloud | Zoom REST API | NDJSON | |
Cloud | Blob Storage | NDJSON |
Identity and Access Management | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
On-Premise | Blob Storage | CSV | |
Cloud | Blob Storage | JSON | |
Cloud | Blob Storage | NDJSON | |
Cloud | API | NDJSON | |
Cloud | API (BETA) | NDJSON | |
PingID | Cloud | API (BETA) | NDJSON |
Network Security | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
On-Premise | Blob Storage | JSON, NDJSON | |
Cloud | Blob Storage | NJDSON | |
On-Premise | API | NDJSON | |
On-Premise | Blob Storage | SYSLOG | |
On-Premise | Blob Storage | TEXT | |
Cloud | API | NDJSON | |
Cloud | Blob Storage | CSV (without header) | |
Cloud | Blob Storage | NDJSON | |
On-Premise | Blob Storage | JSON | |
Cloud/On-Premise | API | NDJSON | |
On-Premise | Blob Storage | NDJSON | |
On-Premise | Blob Storage | KEY-VALUE | |
On-Premise | Blob Storage | TEXT | |
Cloud | Blob Storage | NDJSON | |
On-Premise | Blob Storage | CSV | |
Cloud | Blob Storage | NDJSON | |
Cloud | Blob Storage | TEXT | |
On-Premise | Blob Storage | KEY-VALUE | |
Squid Proxy | On-Premise | Blob Storage | ECS |
On-Premise | Blob Storage | CSV (without header) | |
Cloud | Blob Storage | RSA, NSS | |
On-Premise | Blob Storage | CSV, NDJSON |
Operating Systems | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
On-Premise | Blob Storage | TEXT | |
On-Premise | Blob Storage | NDJSON, CSV | |
Linux Logs | On-Premise | Blob Storage | NDJSON |
Privileged Access Management | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
On-Premise | Blob Storage | CEF |
Threat Intelligence Platform | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
Cloud | API | NDJSON |
Other | |||
---|---|---|---|
Vendor / Product | Type | Supported Collection | Supported Format |
On-Premise | Blob Storage | CEF | |
On-Premise | Blob Storage | KEY-VALUE | |
On-Premise | Blob Storage | TEXT | |
Cloud | API | NDJSON |