Our company is using the solution to build a next-generation security operations center that automates all administration and orchestration. It will include our entire MITRE framework and use cases being mapped at the moment.

We were already developing UEBA and SOAR when we started using the solution. UEBA will track when users move around to determine if movements are suspicious or should be mapped with threat activity.

The solution is a hybrid model. The hardware infrastructure and log collector is on-premises. We provide IP addresses that open a specific communication with the solution's cloud console where our EPS data is contained. We administrate the SIEM via the cloud portal and manage operations or log management on-premises. 

In our project, we are mostly using authentication activities, real-time notification & alerting, log correlation & threat intelligence solutions. The DNIF tool is very authentic and capable of providing the desired output. In projects like emergency response systems, it is very important to have such features, which DNIF is providing. 

The real-time notification is alerting us so that we can act immediately. The environment is protected from threats through its threat intelligence solution.

This is a good tool for emergency response system monitoring, and I highly recommend it. 

This is a log management solution that comes with some inbuilt use cases and capabilities. It's a SIEM tool and clients generally use it in their Security Operations Centers for two purposes. First is the compliance requirement to retain logs for at least a year; the second is to identify unauthorized activities or security incidents in an environment. I recently used this solution before leaving the company to pursue my master's in cybersecurity. The company is a reseller.  

We use this solution for threat hunting, log monitoring and related things. We are customers of DNIF and I'm a cybersecurity engineer.

We used DNIF HYPERCLOUD as a SIEM solution. The client we had was a cosmetic company, and they had a considerable number of logs. Each day they were doing a large number of logs. A SIEM solution is used to validate the logs, to pass those logs, to know what the log consists of, and more. 

We can create a rule, and on the list of rules, we can identify the actual scenario for the client. We can find out if there was any anomaly in their environment or a security threat in their environment. Knowing all the logs that the company and the devices have is very useful, and we can use it to identify any potential security threats.

We are a security operation center and we implement and manage DNIF for clients.

As a SIEM solution, it collects logs not only from network devices like firewalls, servers, databases, switches, or routers, but it also collects logs from applications.

The use case is that we can develop very complex correlation rules, correlating the application logs and the device logs. It enables us to detect fraud within organizations by correlating multiple logs from multiple data sources.

We have integrated all our network devices, our servers, and our applications as well as some customized applications. We use the solution to collect the logs. We track items such as unsuccessful logins, any identical opening identification, repeated use of passwords within a certain timeframe, unsuccessful login attempts, etc.