Let's Talk Start free
Let's Talk Start free
Products

NXLog Enterprise Edition

NXLog Enterprise Edition will no longer be sold, but we will continue support and maintenance until the end of your contract.
Explore NXLog Platform, our new, more powerful alternative with advanced log collection, agent management, storage, and analytics capabilities.

NXLog Platform
Let's talk
SIEM Integration OS Support Windows macOS Collection & Transfer Agent Management Flexibility Agentless/Agent-based Performance Formats & Protocols FIM ICS/SCADA Raijin

Ship Log Data to Any SIEM

The NXLog Enterprise Edition works with practically all major SIEM and log analytics products and services.

Avoid vendor lock-in

Ability to send the same events to multiple destinations at the same time.

Explore all the integrations
Main Page

Superior OS Support

Collect audit logs natively on each supported platform in addition to basic operating system logs and application logs

Microsoft 2 Https S3amazonaws Com Appforest Uf F1617373453406x628683928651226200 16173715984766868 Linux oracle solaris Https S3amazonaws Com Appforest Uf F1617373496530x277627994890163870 16173715984766868 2 Https S3amazonaws Com Appforest Uf F1617373506617x690713447025252100 16173715984766868 4 Openbsd
See documentation

Outstanding Windows Log Collection Capabilities

The NXLog Enterprise Edition is the most advanced log collector for the Windows platform

See all of the Windows log sources
Windows 4
Collect Windows logs locally or remotely
Linux
Can be used as a Windows Event Collector on Linux and Windows to collect WEF remotely
Windows
Natively supports Event Tracing for Windows (ETW)
Microsoftexchange Svgrepo Com
Full coverage for Microsoft Exchange logs
Counter
Pull data from Windows Performance counters
Network
Passive network monitor module for Windows
Powershell
Powershell auditing
Msql Server
Collect Microsoft SQL Server audit logs or read/write data in MS SQL tables
DNS
Full Windows DNS Server log collection support - collect via ETW or parse the DNS log file
Microsoftsharepoint
Microsoft Sharepoint log collection support
Iis
Collect and parse Microsoft IIS logs
Scan Svgrepo Com
Scan the registry and file system periodically for changes to detect and log modifications

Native macOS Logging Capabilities

NXLog Enterprise Edition can filter, normalize, and aggregate logs from multiple Macs into a single SIEM input stream. It is by far the most configurable and versatile logging solution for macOS.

Capable of collecting all types of logs from Apple OS X as well as any release of macOS running on any Mac hardware, including Macs equipped with Apple’s M1 Chip. It’s now possible for the first time ever to gather ULS events.

Learn more
macOS Logging with NXLog

Secure and Reliable Collection and Transfer

Edit
Signed installation packages
Cyber Security
Reliable transfer with protocol-level acknowledgement
Flow
Flow control to prevent data loss during disruptions, even without buffering
Add To Queue
Message buffering and disk-based queues
Compression
Data compression to reduce network traffic
Data Transfer
Failover capabilities
Ssl
TLS/SSL for secure, encrypted data transfer
Start collecting and shipping logs

Remote Management

Managing log collectors across different platforms with segregated administrator roles can be challenging.

Deploy your configuration changes and monitor your agents remotely, without local administrator access.

Learn more about NXLog Manager
Remote Management - NXLog Enterprise Edition

Extreme Flexibility


Filtering
Agent-side enrichment, filtering, pattern matching, log format conversion
Log Format
Read multiple log sources simultaneously
Python 2
Use Perl, Python, Ruby, Go, or Java to create custom parsers or collection logic
Web Programming
Simple and powerful configuration syntax
Decode
Support for different encodings
Correlation
Event cor­re­la­tion
Rotate
Built-in log rotation and retention
Arrows
Send to more than one destination if needed
Id
Resolve numeric IDs to human readable names to improve transparency

Agentless, Agent-based, and Cloud Log Collection Modes

May be deployed as a collection agent, standalone collector system, log relay, or in hybrid mode.

For agent-based collection NXLog is installed on the system generating the log data. In agentless deployments the log sources send their data to NXLog, or NXLog queries the sources over the network.

The ideal tool to collect and centralize log data

Learn more
Agent Mode

Fast, Reliable, and Efficient

Feather
Self-contained, lightweight agent
Startup
Blazingly fast, scalable
File
Read and write compressed files
Code
Runs as native, compiled code - no extra runtime required
Global Network
Can handle thousands of connections in server mode
Network
Network packet capture support
Start building a scalable logging infrastructure

Wide Range of Data Formats and Protocols

Designed with structured data in mind, NXLog embraces structured logging to alleviate the need for writing parsers while most other log collectors are still syslog-based.

See all the formats and protocols supported
Data Protocol

File Integrity Monitoring

Detection mechanism to record and monitor intentional and unintentional changes to important files and folders

Learn more
Compliant 2
Meet obligations and compliance mandates
Good
Enable alerting by detecting and logging changes to monitored assets
Malware 2
Support incident response and malware detection by logging changes to critical assets
Hacker 2
Help detect intrusion by identifying and logging modifications to configuration files

Storing Logs

Encryption and compression enable safe and cost-efficient long term storage of the collected logs

Learn more
Data
Data at rest protection
Encryption
Directly writing compressed data to file


Industrial Control Systems / SCADA

NXLog can be used to collect logs from the Windows computers providing operator access and forward them to a SIEM. NXLog’s unique passive network monitoring capability can be used to log traffic on the industrial control segment of the network. It can parse and decode network traffic logs into human-readable information that can be processed by a regular SIEM. This allows customers to create a single Security Operation Center with improved visibility into all aspects of production.

Enhance SCADA/ICS systems log collection capabilities with NXLog.

Learn more
ICS/SCADA Logging with NXLog

Leverage the Raijin Database as an event store with NXLog Enterprise Edition

Raijin
Direct integration
Big data
Provides easy access to event data without normalization
SQL
Uses familiar SQL-like queries
Menu
Visualize data through Grafana or Apache Superset
Encrypted
Provides encrypted and compressed data storage
Learn more

Regular Hot Fixes

There are security flaws discovered every other day that need attention. OS upgrades may break your log management system. Adding some new log sources can be a challenge.

Unlike the NXLog Community Edition, which is a volunteer effort, the NXLog Enterprise Edition receives regular hot-fixes and enhancements. You and your organization can feel a lot safer, especially with the NXLog Enterprise Support subscription.

Hot Fixes

Build a scalable logging infrastructure

The ultimate log collection and centralization solution


https://nxlog.co/storage/uploads/ce6fcde9-da1c-41f2-ba32-5e4ec59a8b75/download-2.png

Download and try NXLog Enterprise Edition

REQUEST FREE TRIAL
https://nxlog.co/storage/uploads/462c8a52-8304-4b59-9bfd-6fc65aeb8d2d/google-docs.svg

See our extended documentation and how to set up the tool

READ NOW
https://nxlog.co/storage/uploads/4c9a368b-7be5-4569-8344-db5fd6491c40/price-tag.svg

Getting a quote on pricing is easy

REQUEST A QUOTE