Conversational Content Filtering in a Hybrid Workforce

Get the eBook
    free trial
    Book a Demo

    SIEM Integration with Data Export

    All your critical data where you need it

    DNSFilter’s Data Export feature allows customers to transmit DNS query data from DNSFilter to an external location in real-time. This external location can be a data store, data visualization service, analytics service, logging service, and more.

     

    6434556b9acaf86c5cbf5480_Group 2664

    Benefits

    Data Export transmits DNS traffic data out of the DNSFilter platform to external services for storage or further processing and analysis. You can also automate the manual process of exporting query log data, analyze trends and patterns in one location, and automatically retrieve and retain logs for whatever length of time is supported by your SIEM or SOAR

    SIEM SOAR Integrations

    INTEGRATION

    With our Data Export feature, you can directly import DNSFilter data to all SIEMs that can use the HTTP Event Collector (HEC) or Amazon S3. Customers can export query log data to be utilized by a Security Identification and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), or other tools of their choice. Exporting DNSFilter data allows an organization to aggregate relevant data from multiple sources and then take action.

    Visibility is everything. See how exporting DNS data to your SIEM strengthens detection and client trust.
    Read the blog →

    Getting Started

    The ability to extract raw DNS query data from DNSFilter opens a whole new world of custom integrations and data analysis that can help customers with decision making, network troubleshooting, and building extensions for DNSFilter.

    Frequently Asked Questions

    What is Data Export?

    Our Data export feature allows users to export query log data to be utilized by a Security Information and Event Management (SIEM) or other tool of their choice. Exporting DNSFilter data allows an organization to aggregate relevant data from multiple sources and then take action.

     
    Does DNSFilter integrate with Splunk?

    Yes, DNSFilter integrates with Splunk via its HTTP Event Collector (HEC) API, using a well-recognized protocol for transferring data. This same event collector can be used for a number of other SIEMs and data tools. Find more details on the Splunk integration here.

    Does DNSFilter integrate with Amazon S3?

    Yes, DNSFilter supports integration with Amazon S3 setups. Learn more about your ability to integrate DNSFilter with Amazon S3 here.

    What's New