https://atrc.net.pk/dokuwiki/ 2026-04-12T15:32:52+00:00 https://atrc.net.pk/dokuwiki/ https://atrc.net.pk/dokuwiki/lib/tpl/dokuwiki/images/favicon.ico text/html 2023-07-14T07:38:00+00:00 Anonymous (anonymous@undisclosed.example.com) https://atrc.net.pk/dokuwiki/doku.php?id=products:ict:security:siem:chronicle_soar&rev=1689320280&do=diff Chronicle is a cloud-based security platform developed by Google. It offers two main components: Chronicle Detect, which provides SIEM capabilities, and Chronicle Respond, which offers Security Orchestration, Automation, and Response (SOAR) capabilities. Here's a brief overview of Chronicle's features and how it supports SOC operations: text/html 2023-07-14T07:37:00+00:00 Anonymous (anonymous@undisclosed.example.com) https://atrc.net.pk/dokuwiki/doku.php?id=products:ict:security:siem:elk&rev=1689320220&do=diff ELK SIEM is a powerful and popular open-source solution that combines Elasticsearch, Logstash, and Kibana (collectively known as the ELK Stack) with additional SIEM (Security Information and Event Management) capabilities. Here are some details about ELK SIEM for SOC: text/html 2023-07-14T07:35:00+00:00 Anonymous (anonymous@undisclosed.example.com) https://atrc.net.pk/dokuwiki/doku.php?id=products:ict:security:siem:tools&rev=1689320100&do=diff While ELK SIEM and Chronicle SOAR are popular tools used in Security Operations Centers (SOCs), there are alternative options available that may better suit specific SOC requirements. Here are a few notable alternatives to consider: 1. Splunk Enterprise Security: Splunk is a widely recognized and powerful SIEM solution. Splunk Enterprise Security provides advanced threat detection, analytics, and visualization capabilities. It offers a comprehensive set of features for log management, event cor…