AhnLab EPP
AhnLab EPP app supports query commands for endpoint file search, file collection, Ahn report collection, V3 scan, suspicious behavior details, network quarantine, and exception rule management, and provides a dedicated log parser, logger model, dashboard.
AWS
The AWS app provides observability for AWS infrastructures, including AWS CloudTrail, CloudWatch, GuardDuty, EC2, IAM, ELB, and S3. These AWS services enable various analysis functions, such as security and availability monitoring, and cloud cost calculation.
Tanium
Tanium app provides real-time endpoint file browsing, evidence file download, event search, and action deployment.
Criminal IP
Criminal IP app provides attack surface monitoring dashboard, and playbook commands for detecting VPN, TOR, and proxy IP address.