MySQL Database Activity Monitoring by DataSunrise
MySQL monitoring solution by DataSunrise collects detailed logs on database activity which is available for further analysis. It can be used as an evidence of illegal actions during cybercrime investigation. It also can be sent to SIEM-systems (Splunk, IBM QRadar, McAfee, HP ArcSight and others) providing real-time analysis of threats related to information security. Logs contain the following:
- User session data, including host, user, application names, IP addresses, session duration, list of processed queries, etc.;
- Detailed event logs (code of the query, result of query execution);
DataSunrise in a self-learning mode independently inspects user transactions and creates a group of SQL queries that are typical for a certain platform. It prevents from false activation of a firewall and helps in further database management.
Alerting of non-typical operations enable administrators timely respond to malicious activities and relieve from the necessity of looking for suspicious activity among all other transactions.
MySQL monitoring solution by DataSunrise has a convenient interface within which all features are managed. The software is easy to deploy and causes no database slowdown.