Browse answers to common questions about logster.ai, its features, and usage. Our knowledge base provides technical insights to help you maximize the value of your real-time detection pipeline.
Quick answers to common questions about our AI services & solutions
logster.ai supports Windows (Sysmon + PowerShell logs) and Linux (auditd + eBPF logs), providing full telemetry coverage for real-time detection.
Our hybrid AI models combine behavioral baselining, statistical anomaly detection, and machine learning to identify deviations and suspicious activity in real time — even for unknown or fileless attacks.
Yes. logster.ai supports fully on-prem inference nodes for organizations with strict data residency or compliance requirements.
All data is encrypted in transit using TLS. You can also deploy fully on-prem for zero cloud exposure. Optional zero-log mode is available to meet privacy requirements.
Yes. By learning normal host and process behavior, our AI can detect suspicious patterns and deviations even without signatures.
Our system uses per-host baselining, adaptive thresholds.
Alerts are typically delivered within seconds of detection, enabling real-time response to incidents.
Yes, enterprise plans include dedicated support.
Only if using cloud-hosted inference. On-prem deployments can run entirely offline.
Fileless malware, suspicious PowerShell scripts, privilege escalation attempts, lateral movement, unusual kernel activity, and other behavior-based anomalies.
Our team is here to help with questions about logster.ai, deployments, and detection capabilities.
