Scanner

0 reviews

canner.dev provides fast search and threat detections for security data in S3, and helps teams reduce the total cost of ownership of their SIEM by up to 90%. Customers redirect high volume workloads like cloud audit logs, network traffic logs, and identity provider logs away from their expensive SIEM and store them in S3 instead. Then, they use Scanner for fast search and detections on this data in S3, reducing costs dramatically - usually $500k to $1M per year or more. After directly indexing the data in the customer's S3, teams can analyze the data and find IP addresses and other IOCs in petabytes of logs in seconds - 100x faster than Athena for JSON data. Teams can also leverage features like dashboards, detections-as-code with Github sync, threat intelligence, and an API to connect with Splunk, Grafana, Datadog, SOARs like Tines or Torq, our library of Jupyter Notebooks for advanced threat hunting, Slack, Jira, or anything else with a custom webhook.