We’re heading to Blue Team Con for the first time, and we are looking forward to connecting with people who deal with search and detection daily – the CISOs and Security Leaders. There are plenty of ways to meet up with us: book a one-on-one, stop by our Happy Hour, or catch Cliff’s session on […] The post Scanner at Blue Team Con: Tackling Detection Chaos with Collect, MCP, and AI appeared first on Scanner Blog.| Scanner Blog
Scanner is the world’s fastest full-text search and detections platform for data lakes saving teams 70-80% on their SIEM.The platform makes it easy to collect logs from SaaS tools and cloud providers in minutes to build your data lake (no scripts or agents needed), index them directly in your S3 data lake (schemaless, full data custody), search them at high speed with full-text search and AI-assisted investigative features, and leverage pre-built detections or detections-as-code with CI/CD.| Scanner Blog
Unveiling Scanner Collect at Black Hat: effortless log ingestion, fast search, and real-time detection—no scripts, no maintenance.| Scanner Blog
Legacy SIEM costs are rising. Discover how data lakes and modular architectures cut costs, boost retention, and future-proof your security stack.| Scanner Blog
Lightning-fast search engine and API for logs in object storage with powerful threat detection.| Scanner Blog
Fast-moving security teams choose Scanner to cut alert noise, enrich signals in real time, and respond faster—without the bloat of legacy SIEMs. The post Why Fast-Moving Security Teams Rely on Scanner for Detection Alert Analysis appeared first on Scanner Blog.| Scanner Blog
This knowledge base article provides a step-by-step guide to monitoring Okta System Logs for threat detection. Learn how to collect logs via API, enrich them using Substation, and analyze them with Scanner for real-time detections. With MITRE ATT&CK mappings, sample queries, and open-source rule packs, this article helps teams build a scalable, high-fidelity identity monitoring pipeline rooted in Okta telemetry.| Scanner Blog
AI is transforming cybersecurity from a buzzword into a practical tool that enhances the speed and efficiency of threat detection and response. While it aids security teams in tasks like log analysis and alert prioritization, human analysts remain crucial for contextual understanding and strategic decision-making, creating a hybrid approach for better security outcomes.| Scanner Blog
Discover how Scanner and Torq combine to replace bloated SIEMs with a faster, more affordable, and automated approach to threat detection, response, and case handling—perfect for scaling security teams.| Scanner Blog
Scanner.dev CEO Cliff Crosland joins Smashing Security Podcast hosts, Graham Cluley and Carole Theriault, to discuss how Scanner transforms raw log data into searchable insights, helping organizations handle security events more effectively. Cliff explains the challenges of traditional logging tools, the high cost of log retention, and how Scanner leverages Data Lakes to make log analysis […]| Scanner Blog
Scanner CEO describes how Data Lakes enable organizations to maintain control of their data while allowing multiple teams and tools to analyze it efficiently.| Scanner Blog
Scanner is the world’s fastest full-text search and detections platform for data lakes saving teams 70-80% on their SIEM.The platform makes it easy to collect logs from SaaS tools and cloud providers in minutes to build your data lake (no scripts or agents needed), index them directly in your S3 data lake (schemaless, full data custody), search them at high speed with full-text search and AI-assisted investigative features, and leverage pre-built detections or detections-as-code with CI/CD.| Scanner Blog
Scanner is the world’s fastest full-text search and detections platform for data lakes saving teams 70-80% on their SIEM.The platform makes it easy to collect logs from SaaS tools and cloud providers in minutes to build your data lake (no scripts or agents needed), index them directly in your S3 data lake (schemaless, full data custody), search them at high speed with full-text search and AI-assisted investigative features, and leverage pre-built detections or detections-as-code with CI/CD.| Scanner Blog
Explore the benefits of security data lakes and how they enhance GenAI projects, use cases for threat hunting, and streamline D&R workflows.| Scanner Blog
In Episode 14 of the Unapologetically Technical Podcast Scanner CEO, Cliff Crosland, sits down with host Jesse Anderson to discuss his early experiences with distributed systems, including his work on creating graphs and entity resolution. They also discussed the implications of Generative AI and LLMs for current and future coders. Cliff highlights the challenges of using […]| Scanner Blog
The Playground is a hands-on, interactive way to try Scanner, walking users through a complete threat investigation using cloud audit logs.| Scanner Blog
Scanner CEO sits down with Matt Nelson to discuss Scanner's modern SIEM technology that's more efficient than traditional tools and costs 90% less.| Scanner Blog
We're excited to announce the release Scanner for Jupyter, allowing users to analyze and visualize years of logs using Jupyter notebooks via the Scanner Python SDK.| Scanner Blog
Scanner is the world’s fastest full-text search and detections platform for data lakes saving teams 70-80% on their SIEM.The platform makes it easy to collect logs from SaaS tools and cloud providers in minutes to build your data lake (no scripts or agents needed), index them directly in your S3 data lake (schemaless, full data custody), search them at high speed with full-text search and AI-assisted investigative features, and leverage pre-built detections or detections-as-code with CI/CD.| Scanner Blog
Learn about Scanner's new threat detection rules, chaining, and how they can protect your Redis server from mining bitcoin for North Korea.| Scanner Blog
How Scanner's fast log search and threat detections API for your S3 makes the discovery and exploration of security threats easier and faster| Scanner Blog
We indexed 100 billion synthetic AWS CloudTrail log events with a cumulative size of 250TB to run an experiment and comparison.| Scanner Blog
Enhanced functionality enabling users to perform detailed analysis to help uncover potential data breaches.| Scanner Blog
During breaches like Okta's, speed is of the essence, which is the primary reason we built Scanner to provide fast search for logs in AWS S3.| Scanner Blog
We believe it should be possible to store logs at massive scale and low cost, and search over any period of time, without sacrificing speed.| Scanner Blog
Scanner CEO, Cliff Crosland, joins the Ready, Set, Cloud! Podcast to discuss how and why Scanner built a serverless security data lake.| Scanner Blog
Announcing Aggregations, Faster Queries powered by a new monoid data structure server we built in Rust, and Saved Queries.| Scanner Blog
We explore different tools used to investigate a security incident and discuss why Scanner's search improves on the status quo significantly| Scanner Blog