• Agnostic Integrations

• Interaction with different event sources

• Support for multiple destinations

• Versatility

• Flexible routing

• Parallel Processing

• Independence of Data Source and Destination

• Flexibility in data handling

• High processing capacity

• Collector Replacement

• Traditional or modern legacy sources, using multiple standard protocols and integration mechanisms

• Network devices such as firewalls, routers, and switches

• Security systems such as SIEM, IDS/IPS, and antivirus

• Applications, servers, databases, and web servers

• Cloud platforms such as AWS, Azure, and Google Cloud

• Legacy technologies or proprietary solutions, any type of system or device that emits events can be connected and processed efficiently

• Parsing for non-standard logs