Log centralization and correlations have been around for a long time, with a market saturated by complicated solutions. Beyond the many technological features of TEHTRIS SIEM, this is why our customers choose us.

Security Information & Event Management

TEHTRIS SIEM provides an effective alerting tool to monitor the security of your systems and applications with reports and event dashboards powered by a correlation engine fed by threat intelligence from the industry leading TEHTRIS XDR Platform.

Integrated into our XDR platform, TEHTRIS SIEM enables real-time incident detection and response and helps automate SOC services, providing relevant information and meaningful alerts, to make the job of your Security Operations Center response team easier.

Latest Updates

WHY tehtris SIEM?


TEHTRIS has significantly simplified the complexity of SIEM projects with an offer in operated mode, from deployment to maintaining operational conditions.


TEHTRIS SIEM is fully and natively integrated with your TEHTRIS XDR Platform and its wide range of tools such as SOAR, CTI, hunting, compliance, incident management, etc.


TEHTRIS SIEM is directly connected to the integrated SOAR of the TEHTRIS XDR Platform, which leads to significant cost savings and makes deployment and integration far easier, no matter how sophisticated the solutions are.


TEHTRIS SIEM customers can use the cloud, on-premise appliances, or a hybrid set up, in order to control the location and position of data, from a simple infrastructure to multi-cloud environments.


TEHTRIS SIEM runs on appliances using the TEHTRIX distribution which is fully disk encrypted, with advanced protection mechanisms such as RBAC in the kernel and 0-day protection.


TEHTRIS SIEM is delivered with several hundreds correlation rules that can be activated for all the mains sources of an infrastructure: Windows, Antivirus, Authentication, etc.


Security Orchestration, Automation and Response

When it comes to  cybersecurity, the ability to orchestrate a quick and efficient response to cyber events is a fundamental issue. One of the best ways to achieve this is to use particularly powerful automation and artificial intelligence. This is what TEHTRIS offers you with its SOAR integrated to the TEHTRIS XDR Platform.

Discover our way to create hyper automation!

compatible PlatformS

Here is the current list of supported platforms. This list may be updated.

Vendors Products Families
A10 Networks Load Balancer Network / Infrastructure
Accellion Secure File Transfer Security or Network
Access Layers Portnox Network / Infrastructure
Adtran NetVanta Network / Infrastructure
Adtran Bluesocket Network / Infrastructure
AirTight Networks SpectraGuard Network / Infrastructure
Alcatel-Lucent NGN Switch Network / Infrastructure
Alcatel-Lucent VitalQIP Proxy
Amazon Amazon S3 Cloud
American Power Conversion Uninterruptible Power Supply Network / Infrastructure
Ansible Ansible Applications
Apache Software Foundation Apache Web Server Network / Infrastructure
Apple Inc. Mac OS X OS
Arbor Networks Peakflow SP Security
Arbor Networks Peakflow X Security
Arbor Networks Pravail NIDS
ArcSight Common Event Format Security
Aruba Aruba OS OS
Aruba ClearPass Network / Infrastructure
Attivo Networks BOTsink Security
Axway SecureTransport Proxy
Balabit Balabit Identity Services
Barracuda Networks Spam Firewall Firewall
Barracuda Networks Web Application Firewall Firewall
Barracuda Networks Barracuda Web Filter Security
BeyondTrust BeyondInsight Security
Bit9 Bit9 Security Platform / Parity Suite Antivirus/EPP
Bit9 Carbon Black Security
Blue Coat Reporter Applications
Blue Coat Director Network / Infrastructure
Blue Coat ProxySG Proxy
Blue Ridge Networks BorderGuard Firewall
BlueCat Networks BlueCat DNS/DHCP Server Network / Infrastructure
Bradford Networks Campus Manager Network / Infrastructure
Bro Network Security Monitor Bro Network Security Monitor Network / Infrastructure
Brocade IronView Network Manager Network / Infrastructure
Brocade BigIron FastIron and NetIron Network / Infrastructure
Brocade VDX Switch Network / Infrastructure
CA Technologies DataMinder Security
CA Technologies SiteMinder Network / Infrastructure
Check Point Check Point via Splunk Firewall
Cisco Unified Communications Applications
Cisco IronPort Email Security Email Security
Cisco PIX/ASA/FWSM Firewall
Cisco Open TACACS+ Identity Services
Cisco NAC Appliance Network / Infrastructure
Cisco MDS Network / Infrastructure
Cisco Wireless Control System Network / Infrastructure
Cisco Wireless LAN Controller Network / Infrastructure
Cisco Meraki Network / Infrastructure
Cisco WAP200 Network / Infrastructure
Cisco Firepower Management Center Network / Infrastructure
Cisco Identity Services Engine Network / Infrastructure
Cisco Firepower Management Center NIDS
Cisco Secure ACS NIDS
Cisco IOS OS
Cisco NX-OS OS
Cisco CATOS v7xxx OS
Cisco Unified Computing System Proxy
Cisco WAAS Proxy
Cisco IronPort Web Security Appliance Proxy
Citrix NetScaler Proxy
Citrix Secure Gateway Proxy
Cluster Labs Pacemaker Applications
Code Green TrueDLP Data Loss Prevention Security
Cofense Cofense Intelligence Security
Cofense Cofense Triage Email Security
Cooper Power Systems Yukon IED Manager Suite Applications
Cooper Power Systems Cybectec RTU Network / Infrastructure
Corero Corero IPS NIDS
Corvil Security Analytics Security
CyberArk Enterprise Password Vault Applications
CyberArk Privileged Identity Management Suite Applications
CyberArk Privileged Threat Analytics Security
Cyberoam Cyberoam UTM and NGFW Firewall
Cylance CylancePROTECT Antivirus/EPP
Cyrus Cyrus IMAP and SASL Email Security
D-Link NetDefend UTM Firewall Firewall
Damballa Failsafe Antivirus/EPP
Dell SonicOS Firewall
Dell PowerConnect Switches Network / Infrastructure
Dell Aventail VPN
DenyAll rWeb Firewall