Feature

Command Module

Command collects telemetry and produces proof you can defend: Field Coverage verdicts, encrypted config evidence snapshots with hashes, and governed remediation actions with approvals.

Get a Walkthrough

View Pricing

High-throughput telemetry with defensible evidence.

Workflow

How It Works

Evaluator-level mechanics behind this feature and how it becomes verifiable proof.

Syslog, NetFlow v9, and IPFIX ingestion

Syslog, NetFlow v9, and IPFIX ingestion with normalization

Collectors with spooling

Collectors with spooling, backpressure, and retries

RBAC-enforced evidence and audit logs for

RBAC-enforced evidence and audit logs for governed actions

Capabilities

At a Glance

Feature-specific context: outcomes, outputs, and where it fits.

Used For

CMMC • SOC 2

Outcomes

Prove telemetry integration correctness • Detect drift and misconfiguration • Produce technical evidence for auditors

Exports & Records

Coverage verdict report • Config snapshot hashes • Job logs

Technical Notes

Syslog, NetFlow v9, and IPFIX ingestion with normalization • Collectors with spooling, backpressure, and retries • RBAC-enforced evidence and audit logs for governed actions

Sharing and Controls

Pair outputs with Trust Center tiers so you control what’s shared and preserve access logs.

What you can show reviewers

Artifacts reviewers recognize, plus sample previews of structure.

Plans

Plan availability

FoundationsContinuousSecurity OpsResilienceCommand

See pricing and plan details.

Integrations

Works with your security stack

Connect systems you already run. Prove coverage with verifiable evidence, not assertions.

Browse Integrations

FAQ

Common questions from buyers and reviewers.

What does a reviewer actually receive?

Common outputs include: Coverage verdict report; Config snapshot hashes; Job logs.

Where does this feature fit?

Teams use it for CMMC, SOC 2. The goal is to reduce back-and-forth by tying work to evidence, approvals, and clear history.

What outcome should I expect?

Prove telemetry integration correctness Detect drift and misconfiguration

Do you auto-share content externally?

No. Drafts and shared materials are human-reviewed. You control what's shared and what stays internal.

Next step

Want a walkthrough focused on this feature?

Bring a reviewer request. We'll map the workflow end-to-end.

Get a WalkthroughBrowse modules

No obligation. We respond within one business day. No compliance guarantees.