The Log Inspection module identifies security events contained in a computer's log files. Suspicious events can be forwarded to a SIEM system or centralized logging server for eventual correlation, reporting and archiving. It functions by implementing the open-source software available at OSSEC.net.
The Log Inspection page has the following tabbed sections: