Are events and logs from my vendor ingestible?

Stellar Cyber has a series of specialized connectors and parsers to take full advantage of log content from specific vendors and their products. With that said, not all third-party logs have Stellar Cyber connectors or parsers. In the case of Common Event Format (CEF) logs, generic CEF logs are ingests as raw logs but are not sent to the Stellar Cyber XDR Kill Chain. You may opt for simply forwarding syslogs. However, if you want to ingest more content and do not see your vendor or product in the various selection lists, you can request custom parsers be built.

To request customer parsers, please contact your Stellar Cyber representative.