Try a DemoGet the Latest ReleaseSee the CHANGELOGCreate a Feature Request / Bug ReportJoin the Conversation
HomeGuides
Try a DemoGet the Latest ReleaseSee the CHANGELOGCreate a Feature Request / Bug ReportJoin the Conversation
Guides

What is Substation?

Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.

Suggest Edits

Substation provides three capabilities:

  • Deploy modular, serverless data pipelines in minutes
  • Evaluate and transform event logs in real-time
  • Create custom data processing applications written in Go

Features

Deploy Modular, Cloud Native Data Pipelines

  • Design data pipelines based on your unique use cases and requirements
  • Autoscale beyond 100,000 events per second with almost zero maintenance
  • Route data to SIEMs, data lakes, and other log management platforms

Evaluate & Transform Data

  • Evaluate data before applying transformation functions and routing decisions
  • Normalize data to a common schema for easy analysis and correlation
  • Enrich data with threat, infrastructure, and business context

Build Custom Data Processing Apps

  • Build Substation applications that run in any cloud environment or on-prem
  • Use Substation's Go packages to evaluate and transform data in your own applications

Updated over 1 year ago