new
Managed ITDR
Managed SIEM
Additional ITDR Microsoft Audit Log Ingestion
Huntress ITDR now ingests and stores in the Huntress SIEM Microsoft Audit.General and Audit.Sharepoint logs (in addition to Audit.Exchange and Audit.AzureActivityDirectory). This data is retained for one year at no cost and does not require a Huntress SIEM subscription.
Huntress SOC analysts and threat hunters use this data to detect adversary activity, and it is now available to Huntress users as well with the full functionality of the Huntress SIEM.
For more information, check out Huntress Managed SIEM Log Search Guide and Huntress Managed SIEM Query Builder.