Emsisoft
Emsisoft’s EDR comes with an integration module that enables security event information to be automatically fed to third party SIEM platforms such as Splunk which import standardized Syslog Common Event Format (CEF) data. This is particularly useful for SOC teams that want to include endpoint protection visibility to their event aggregation workflows.
