• Planned

    7

    User behavior analytics(UBA)

    All leading SIEM products provide UBA; its a must feature for any modern-day SIEM. Unavailability of UBA is one of the major reason, competitors take edge in POC demos ...

  • Planned

    4

    Support security features provided by SNMP v3

    Authentication in SNMP v1 and v2 is nothing but community string sent in clear text. SNMPv3 does not use community strings, but uses password based authentication and ...

  • Planned

    10

    Support for Oracle Service names instead of SID

    A company may standardize on using service names because when using Oracle RAC. The Sentinel Data Synchronization to Oracle feature is only possible by using the SID of ...

  • Planned

    2

    Forcepoint's Data Leak Prevention (DLP) AP-Data collector

    Forcepoint's Data Leak Prevention (DLP) AP-Data is well know in this space. With no Sentinel Collector, that's a significant blindspot of device and user activity in our ...

  • Planned

    5

    Forcepoint's web gateways AP-Web collector

    Forcepoint's web gateways AP-Web is well know in this space. With no Sentinel Collector, that's a significant blindspot of device and user activity in our network.

  • Planned

    6

    Carbon Black Enterprise Response collector

    Carbon Black Enterprise Response is well know in this space. With no Sentinel Collector, that's a significant blindspot of device and user activity in our network.

  • Planned

    3

    Meraki Firewall Collector Plugin development

    The Cisco Meraki proprietary packet processing engine analyzes network traffic up to and including layer 7. Cisco Meraki's next generation firewall controls evasive, ...

  • Planned

    4

    notification on alert creation or owner change

    there should be an option to notify the owner if an alert is assigned.

  • Planned

    4

    Sentinel User Permissions for Web Interface and REST API procedure ...

    A recent investigation into the automation of creating new event source objects within Sentinel via external sources has revealed that the permissions necessary to invoke ...

  • Planned

    7

    Mechanism to customize, per event type, fields of interest that ...

    Sentinel needs a means to get common-interest fields to automatically show-up when “More” is selected on an individual event or “Show more details” is ...

  • Planned

    11

    Time scheduling for Sentinel connectors

    Connected systems like databases or others have maintenance times during the night or weekend, when they are shut down. Installed connectors (for DB2 for instance) then ...

  • Planned

    6

    Raw bulk syslog event forwarding

    Allow forwarding of raw syslog events at volume to additional locations with the ability to spoof the source ip on UDP sessions

  • Planned

    7

    Support both IPv4 and IPv6 for IP2Location

    IP2Location offers IPv4 and IPv6 as separate databases (e.g. DB5 & DB5IPV6) so the feed should be capable of processes both CSV's into Map without the need for complex ...

  • Planned

    4

    Kaspersky Security Center Collector

    Kaspersky is one of the Top 5 Security Solutions on the market. Collectors for McAfee, Sophos, Symantec, Trend Micro exist, the creation of a Kaspersky Security Center ...

  • Planned

    2

    Forwarding of netflow data

    The ability to forward raw netflow data using spoofed or non spoofed source address. Allowing additional tools to get flow data

  • Planned

    7

    Out of box Reports extraction Format

    At this time reports (out of box)can only be exported from the SIEM as PDF files. It would be great if we could get those reports in CSV format as well.

  • Planned

    5

    Extend Feed Frequency Options

    At the moment the minimum Feed frequency is Weekly. Considering IP2Location only updates their databases once a month, this weekly minimum is a waste of resources to ...

  • Planned

    4

    Support IPv6 through and through

    Instead of hacking the system, such as TID 7016555, to make any use of IPv6, Sentinel should not only accept IPv6 syntaxes, but store and parse them in such a way that ...

  • Planned

    5

    Airwatch Collector

    AirWatch is probably one of if not "the" top MDM solutions on the market today. With no Sentinel Collector, that's a significant blindspot of device and user activity in ...

  • Planned

    16

    Export PDF reports with password protection in Sentinel

    The possibility to export reports (CSV, PDF or other format) with password protection to increase security and sending by email.