All Twistlock data is available via open formats and APIs. Audit events can be downloaded as a CSV, pulled in JSON via our API, and consumed in standard RFC 5424 syslog format. No proprietary binary formats or encoding gets between you and your event data.
Because of the openness of the data, it’s easy to get Twistlock data into the log analytics tools you’re already using. We have customers using a wide range of technologies, including established enterprise tools like IBM’s QRadar and HP’s ArcSight as well as newer technologies like Datadog, Sumo Logic, and Splunk. We’ve made it easy to get all our data into whatever tools you’re already using so you have a single place to manage events, analytics, and alerting.
Twistlock's console provides built in, native visualizations of event data. All audit tables have advanced “Excel style” sorting and filtering, to make it easy to slice and drill down on data. We provide powerful visualization capabilities in our runtime radar view that dynamically builds a network graph of connectivity between images and pods in your environment and overlays that graph with color coded indicators of vulnerability and threat data. Our compliance explorer makes it easy to see compliance metrics from an auditor’s point of view with charts and graphs depicting compliance over time and per population for each of your key controls.