Find threats hiding in historical logs
Most log tools are so expensive that teams can only retain a few weeks of logs, which means losing visibility into historical data. Scanner is 10x cheaper than those tools and can easily retain 1 year of logs (or more) at low cost. Run fast queries on your data to hunt for threats and create detection rules to protect your organization.
Fast search for petabyte-scale log data sets in S3
When you execute a query, Scanner launches serverless Lambda functions to traverse its skip-list index files at high speed, up to 1 TB per second. Searching for a needle-in-haystack over one petabyte of logs takes tens of seconds, not tens of hours.
Analyze logs in any format - no schema required
Scanner can analyze S3 log files stored in JSON, Parquet, CSV, or plaintext format. All fields are indexed, and there is no need to create or maintain any schemas.
Select managed or self-hosted options
Managed Scanner maintains your AWS account housing the Scanner instance, while Self-Hosted Scanner creates, sets up, and transfers the AWS account to your team. A deployer IAM role is retained to keep Scanner updated.
Work with a trustworthy partner
Scanner maintains all of its data in S3 buckets in your AWS account, allowing you to control all of your log data with no vendor lock-in. Scanner has completed SOC 2 Type I and Type II audits.