Log Management Systems (LMS)

A software system that aggregates and stores log files from multiple network sources and systems.

Allows organizations to centralize all of their log data from multiple systems.

Allows Logs to be viewed and correlated.

Main purposes:

• Detect and respond to Indicators of Compromise (IoC);

• Conduct forensic data analysis;

• Perform investigations into network events and possible attacks.