Integrations Reference
Complete documentation for all 20 database connectors and 14 SIEM integrations supported by DB Audit.
Log Collection Methods
DB Audit supports multiple methods for collecting audit logs from your databases.
Native Audit
Collect directly from database native audit logs and tables
CloudWatch
Collect from AWS CloudWatch Log Groups for AWS-hosted databases
Azure Monitor
Collect from Azure Monitor and Log Analytics for Azure databases
GCP Cloud Logging
Collect from Google Cloud Logging for GCP databases
Custom SQL Query
Use custom SQL queries to collect audit data from tables/views
Database Connectors
Native connectors for 20 databases including relational, NoSQL, and cloud data warehouses.
Relational Databases (10)
PostgreSQL
Port 5432Features:
- pg_stat_statements (aggregated statistics)
- pgaudit (detailed session logs)
- SSL/TLS support
Configuration:
MySQL
Port 3306Features:
- Audit Plugin
- General Query Log
- Slow Query Log
- Performance Schema
Configuration:
MariaDB
Port 3306Features:
- Audit Plugin
- Query Logging
- MySQL-compatible
Configuration:
Oracle Database
Port 1521Features:
- Unified Audit Trail (12c+)
- Standard Audit Trail
- Fine-Grained Audit (DBA_FGA_AUDIT_TRAIL)
- V$SQL statistics
Configuration:
SQL Server
Port 1433Features:
- SQL Server Audit
- Extended Events
- Default Trace
- Query Store
Configuration:
Azure SQL Database
Port 1433Features:
- Azure SQL Auditing
- Diagnostic Logs
- Query Performance Insight
Configuration:
CockroachDB
Port 26257Features:
- SQL Audit Logging
- Event Logs
- Distributed SQL
Configuration:
TimescaleDB
Port 5432Features:
- PostgreSQL-based
- pg_stat_statements
- Time-series optimized
Configuration:
ClickHouse
Port 9000Features:
- Query Log
- Part Log
- OLAP Analytics
Configuration:
IBM Db2
Port 50000Features:
- DB2 Audit Facility
- db2audit
- Enterprise auditing
Configuration:
NoSQL Databases (6)
MongoDB
Port 27017Features:
- Audit Log
- Profiler Integration
- Document-level auditing
Configuration:
Apache Cassandra
Port 9042Features:
- Audit Logging
- CQL Support
- Distributed wide-column
Configuration:
Redis
Port 6379Features:
- MONITOR Command
- Slowlog Analysis
- Command logging
Configuration:
Elasticsearch
Port 9200Features:
- Audit Logging
- Slow Log
- Security events
Configuration:
Couchbase
Port 8091Features:
- Audit Events
- N1QL Query Logs
- Document database
Configuration:
Neo4j
Port 7687Features:
- Query Logging
- Security Events
- Graph database
Configuration:
Cloud Data Warehouses (4)
Snowflake
Port 443Features:
- Query History
- Access History Views
- Cloud-native
Configuration:
Google BigQuery
Port 443Features:
- INFORMATION_SCHEMA
- Audit Logs
- Serverless
Configuration:
Amazon Redshift
Port 5439Features:
- STL Tables
- SYS Tables
- Query Logging
Configuration:
Amazon DynamoDB
AWS APIFeatures:
- CloudWatch Integration
- Stream Processing
- Key-value store
Configuration:
SIEM Integrations
Forward audit events to 14 leading SIEM and security platforms with automatic batching, rate limiting, and retry logic.
Supported Event Types
Cloud SIEM Platforms (10)
Configuration:
workspace_id, shared_key, log_type Configuration:
base_url, client_id, client_secret Configuration:
api_url, api_key, api_key_id Configuration:
customer_id, credentials_json Configuration:
region, access_key_id, secret_access_key Configuration:
api_key, site Configuration:
instance_url, username, password Configuration:
console_url, api_token Hybrid SIEM Platforms (3)
Configuration:
hec_url, hec_token, index, source_type Configuration:
hosts, api_key, index_pattern Enterprise Features
Built for scale with enterprise-grade reliability.
Automatic Batching
Events are automatically batched for efficient transmission to SIEM platforms.
Rate Limiting
Per-provider rate limits (200-1000 events/sec) with intelligent throttling.
Retry Logic
Exponential backoff with configurable retry attempts ensures delivery.
Need a custom integration?
We're constantly adding new connectors. Let us know what you need.