Find the needle in a multi-terabyte haystack
Get search results in seconds, even if you're searching for a single IP address across a year of logs. By default, Scanner index files are retained for one year in your own S3 bucket.
Detection rules and alerting across 1PB of logs
Hundreds of out-of-the-box detection rules for common security logs, like AWS CloudTrail. Send alerts to Slack, PagerDuty, and custom webhooks. Coming soon!
No need to build another log ETL pipeline
Scanner indexes all of the fields of your data. No need to create any schemas. Handles common log formats: eg. JSON, CSV, Parquet, and Plaintext.
Get started in minutes with CloudFormation
Scanner simply needs read permissions to your S3 buckets and S3 object notifications in SQS. Launch our CloudFormation template to get started in minutes.
At our prior company, our logging scaled rapidly.
We didn't want to spend an additional $1M per year on traditional logging tools. So we threw away logs more than a few hours old, which made debugging super painful.
That’s why we built Scanner. It should be possible to store logs at massive scale and low cost without sacrificing speed.