This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Supported Integrations

    Integrations facilitate the ingestion of data sources from a wide range of third party vendors. Our Integrations are updated regularly as new and emerging technologies are released.

    Each Integration typically requires a configuration guide outlining steps you must follow to integrate your data source to the SamurAI platform.

    For details such as transport methods and logs collected please refer to each supporting vendor configuration guide by clicking the link in the table or browsing directly to Product Integration Guides.

    All supported integrations are categorized according to our Detection Categorization. For further information refer to the following article: Telemetry Data Source Categorization.

    Available configuration guides

    VendorProductDetection Category
    AmazonCloudTrailDetection
    AmazonElastic Load BalancerDetection
    AmazonVPC Flow LogsDetection
    AmazonWAFDetection
    ApacheHTTP ServerEnrichment
    Aruba NetworksClearPassEnrichment
    BeyondTrustEndpoint Privilege Management EPMEnrichment
    BlackberryCylancePROTECTEnrichment
    Check PointNext-Generation FirewallFoundation
    Check PointHarmony SASEDetection
    CiscoIOSEnrichment
    CiscoIdentity Services Engine (ISE)Enrichment
    CiscoMerakiDetection
    CiscoSecure EndpointFoundation
    CiscoSecure Firewall (ASA)Foundation
    CiscoSecure Firewall (FTD)Foundation
    CiscoUmbrellaFoundation
    CitrixNetscaler (ADC)Enrichment
    ClarotyContinuous Threat Detection (CTD)Foundation
    ClarotyxDomeDetection
    ClavisterNetwallFoundation
    Click StudiosPasswordstateEnrichment
    CrowdstrikeFalcon Data ReplicatorEnrichment
    CrowdstrikeFalconFoundation
    CyberArkPrivileged Access SecurityEnrichment
    Digital Artsi-FILTERDetection
    ESETPROTECTDetection
    F5BIG-IP ASMDetection
    F5BIG-IP LTMDetection
    FortinetFortiAnalyzerFoundation
    FortinetFortiEDR (Cloud)Foundation
    FortinetFortiEDR (On-Premise)Foundation
    FortinetFortiGate Next-Generation FirewallFoundation
    FortinetFortiWebDetection
    GestioIPIPAMEnrichment
    GoogleWorkspaceEnrichment
    Heimdal SecurityHeimdal SecurityDetection
    InfoBloxDDIDetection
    LinuxAuthenticationEnrichment
    MicrosoftAzure Application GatewayDetection
    MicrosoftAzure Activity LogsEnrichment
    MicrosoftAzure FirewallDetection
    MicrosoftAzure Key VaultEnrichment
    MicrosoftAzure Virtual NetworkEnrichment
    MicrosoftDefender for EndpointFoundation
    MicrosoftDefender Advanced HuntingFoundation
    MicrosoftEntra IDEnrichment
    MicrosoftGraph (Security)Detection
    MicrosoftIISDetection
    MicrosoftMicrosoft 365Enrichment
    MicrosoftDHCP ServerEnrichment
    MicrosoftDNS ServerDetection
    MicrosoftWindows Event LogEnrichment
    Nozomi NetworksGuardianDetection
    OktaWorkforce Identity CloudEnrichment
    Palo Alto NetworksCortex XDR ProFoundation
    Palo Alto NetworksNext-Generation FirewallFoundation
    Palo Alto NetworksPanoramaFoundation
    PowerDNSRecursorDetection
    ProofPointTargeted Attack Protection (TAP)Detection
    SambaSamba ADEnrichment
    SquidSquid CacheDetection
    SophosSophos CentralDetection
    TrellixEndpoint Security (ENS)Foundation
    TrellixEndpoint Security (HX)Foundation
    Trend MicroVision OneDetection
    VeeamBackup and ReplicationEnrichment
    VMwareCarbon Black Cloud Enterprise EDRFoundation
    WatchguardFireboxDetection
    ZscalerInternet Access (ZIA)Detection
    ZscalerPrivate Access (ZPA)Detection

    In the pipeline

    Outlined below are integrations we have in the pipeline however have no committed dates for support. Please note any integration may be influenced by changing business opportunities and client requirements. Please contact NTT for further information or if you require additional support.

    VendorProduct
    CloudflareCloudflare
    OpenBSDPacket Filter
    Skyhigh SecurityOn-Premises SWG
    NetskopeNetskope SSE