What is Scanner

Scanner is the world’s fastest, easiest, and most scalable Security Data Lake. It lets you keep unlimited logs in your own Amazon S3 buckets and adds hyper fast search, detection, alerts, APIs & more

Why Scanner?

  • Hyper Fast Search - Search petabytes of logs in seconds, up to 700x faster than Amazon Athena.

  • Eliminate SIEM Blindspots - Unlimited log retention at 90% lower costs than SIEMs to get visibility into threats and risks other tools miss.

  • Build In An Afternoon - Scanner simplifies building and running your own data lake.

  • Control Your Own Data - Index data directly in your own S3 buckets and avoid vendor lock-in.

  • Full-Text Search - Easy schema-less search to find a needle-in–a-haystack across 100TB of logs in less than 10 seconds.

  • Index Logs As They Are - No schemas or ETL required. JSON, CSV, plaintext, Parquet—all instantly searchable.

  • Detections as Code - Create and manage detection rules directly from GitHub.

Use Cases

  • Incident Response - Accelerate investigations with fast search plus out-of-the-box and fully customizable detection rules and alerts.

  • Threat Hunting - Search for possible threats through a full year of logs in seconds, getting 10x more visibility than ever before.

  • Data Lake Building - Traditionally setting up your own data lakes has been very difficult. Scanner makes it super easy and you can be up and running in a day or less.

  • Compliance and Audit - Maintain all the logs you need and easily prove compliance to your auditors.

Key Features

  • Scanner Collect - Seamlessly ingest all your logs with dozens of pre-built integrations or build your own custom integration.

  • Search in seconds - Get query results on a petabyte of data in seconds.

  • Full-text search - Highly flexible search for any text in any log.

  • Detection rules out-of-the-box - A built-in library of query-based customizable detection rules and alerts.

  • Detection-as-code with CI/CD - Create and manage detection rules directly from GitHub.

  • Scanner API - Search your logs in S3 from the tools you programmatically manage detections, and alert.

  • AI explanations - Easily understand log data and alerts with natural language explanations.

  • Role-Based Access Control (RBAC) - Manage permissions securely and efficiently by restricting access to system resources based on predefined roles.

Watch it in Action

Learn More

Visit https://scanner.dev/ or Book a demo with our product experts.

NextHow it Works

Last updated

Was this helpful?