Compatible Targets
SIEM platforms supported by logcannon.com
| Target | Status | Description | Format |
|---|---|---|---|
| Splunk HEC | Supported | Send logs to Splunk via HTTP Event Collector (HEC). Supports custom indexes, hostname override, and batch processing. | XML (Raw Windows Event Log format) |
| Elasticsearch | Supported | Send logs to Elasticsearch clusters with ECS-compliant field mappings. Supports API key authentication and custom indices. | JSON (ECS-compliant) |
| Azure Sentinel | Planned | Future support for Microsoft Sentinel. Field mappings are defined but implementation is pending. | JSON (Sentinel schema) |
Using a different SIEM? Let us know which platform you'd like to see supported next.