Axoflow Platform
Axoflow Platform is the Security Data Layer that gives you access to your security data from any source, at rest or in-transit, without you needing to babysit it.
Axoflow Platform is built up of the following parts:
- A pipeline acting as the transportation layer for your security data and also acting as an automated ‘translator’ between data schemas.
- AI - If you prefer to run your detection content locally—whether it’s an AI or ML model, a threat intel lookup, or another type of enrichment—we’ve got you covered.
- Storage solutions to facilitate the cost-effective storage of security data and also acting as local storage to run your decentralized detection.
- Orchestration to weave all of the parts together in an easy-to-use GUI that lets youmonitor and manage, and control and search your data.
Collection
Our collection infrastructure gives the Platform the ability to collect data from anywhere – cloud services, cloud-native (OTel, K8s) or traditional (syslog-ng, WEC) sources, and applications. The Platform can also make use of, and instrument your existing collection infrastructure to a degree.
Zero-Maintenance Connectors
Our collection capabilities are further enhanced with zero-maintenance connectors for a wide range of security products – switches, firewalls, and web gateways. Zero-maintenance means that these are maintained by Axoflow and not your team.
Automatic Data Inventory
Another added benefit of the zero-maintenance connectors is automatic data discovery. By identifying the data sources, the Platform automatically creates the associated inventory making the detection of rogue data sources easy.
Carrier-Grade Volumes
The Platform was designed with the highest performance expectations in mind so is able to absorb carrier-grade volumes translating to up to 5 TB/day/core throughput.
Curation
Feed your SIEM with automatically curated, actionable security data that extends completely to the edge, both on-premise and in the cloud.
Automatic Classification
Axoflow automatically classifies, curates, enriches, and optimizes data right at the edge – limiting excess network overhead and costs as well as manual pipeline babysitting.
Curation automated
Curation in the Platform starts with automatic data identification and classification done by the zero-maintenance connectors. Based on the identified data source a series of automatic curation steps could be applied automatically.
Policy-based Routing
Axoflow is able to use its smart edge and full-pipeline visibility to intelligently route data based on business and compliance policy, using easy-to-understand interfaces free of parsers, regexes, and other technical jargon.
Storage
We have a range of storage solutions that complement the Platform, making it a Security Data Layer you can rely on with your AI and security analytics.
Cost savings
From AxoRouter Storage’s local storage that acts as a buffer for log spikes and storing debug logs to the tiered security lake that is AxoLake we have multiple storage solutions helping you cost-effectively store your security data.
Data tiering
Set up your data tiering policy and let Axoflow Platform take care of the rest. Route your raw data to cold storage and the automatically cleaned, actionable data to warm storage for fast and easy access for security analytics.
Federated Search
You choose the data architecture. Run detections locally where data is produced, or centralize your data and analyze it there. Either way Federated Search lets you query across our storage without moving everything.
Management
Simplify control of your security data curation pipelines with a vendor-agnostic management plane for best-in-class visibility, reliability, and reduced costs.
Discovery
Axoflow automatically classifies, curates, enriches, and optimizes data right at the edge – limiting excess network overhead and costs as well as manual pipeline babysitting.
Visibility
Visualize the complete edge-to-edge flow of security data. Gain a complete picture of the log sources, their destinations, and their relative contribution to the entire logging pipeline. Observe what is really going on in your logging environment
Monitoring
Axoflow gives you full control over configurations, thresholds, and alerts. Let Axoflow’s enhanced monitoring capability keep tabs on any number of critical components – system health, volume, data dropouts, data bursts, and critically, transport costs.
Integrations
Axoflow Platform currently has hundreds of application adapters for a range of data sources and destinations and we are working on adding new ones every day.
These zero-maintenance connectors enable Axoflow Platform to parse incoming data sources automatically and then transform them to the destination schema. Check out our documentation for the full list.
SaaS
On-Prem
Hybrid
Air-Gapped
Deployment options
Axoflow Platform can be deployed in the environment of your choice. Our underlying tech is Kubernetes so the web GUI is equally at home as a SaaS offering or as a self-managed deployment in your private cloud or even air-gapped on-prem.
While the Axoflow Console is mostly deployed as SaaS, the Console stores only metrics, so your security data never leaves your premises.