Microsoft has changed the way Message Trace data is retrieved from Exchange Online. The original Reporting Webservice API that TeskaLabs LogMan.io used for Message Trace collection is being deprecated and replaced by a new Microsoft Graph API. If you collect Microsoft 365 Message Trace logs, you must update your Azure / Entra ID configuration, otherwise Message Trace collection will stop working.
Over the past few months, the landscape of open-weight large language models has changed dramatically. New models are being released at a pace that makes systematic evaluation difficult, yet increasingly necessary.
Most LLM comparisons still rely on synthetic benchmarks. While useful, they often fail to answer a more practical question:
How do these models perform in a real, production-like task?
This article presents a structured evaluation of local LLMs based on a concrete, repeatable, and measurable workload: autonomous code generation. Specifically, we focus on how well an autonomous agent, backed by these models, generates production-ready log parsers, and how that performance scales in terms of quality vs. speed.
Most security monitoring focuses on what happened, such as a failed login, a new admin, or a suspicious process. That approach is useful, but many strong warning signs do not come from one event. They come from a change in how a host behaves over time. When normal behavior starts to shift, that is often where analysts first see a real problem forming.
Vector baselines solve this by learning the usual shape of activity for each host and then detecting when that shape changes. Instead of writing and tuning many static thresholds, baselines let the system learn what is typical for each host or device.
When current behavior is statistically far from that learned normal, the baseline creates a signal or a complex event, that is visible in the Discover section.
Release date: 16.02.2026
LogMan.io v25.47 introduces a complete redesign of the Observability interface, featuring intuitive point-and-click customization for Dashboards, Homepage, and Discover screens. This release also delivers significant performance improvements with an optimized row lookup algorithm and faster event replay capabilities.
TeskaLabs LogMan.io is a SIEM (Security Information and Event Management) and advanced log management cyber security tool.
The NFR (Not-For-Resale) release of TeskaLabs LogMan.io is distributed as a virtual machine. The NFR VM is intended for evaluation, demonstrations, proof-of-concept deployments, and training purposes.
The following guide covers how to start and operate the TeskaLabs LogMan.io NFR Virtual Machine.
Release date: 02.10.2025
TeskaLabs LogMan.io v25.30 brings a range of new features, improvements, and important changes to the platform. This release focuses on enhanced management, automation, and user experience, while introducing several breaking changes that require attention during the upgrade.
Release date: 13.08.2025
In LogMan.io v25.28, you'll find brand new alert management and color-coded layers in the Library. We are continuously extending integration possibilities, and there's also a gift for admins: All data retention can be managed from the WebUI, either selectively through Event Lane declarations or through Profiles that manage multiple or all datasets at once.
Application logging is your first line of defense in cybersecurity monitoring and incident response. When implemented correctly, logs become powerful allies for security teams, enabling rapid threat detection, forensic analysis, and compliance reporting. However, poorly structured logs can become noise that obscures critical security events and hampers investigation efforts.
This guide explores key principles for implementing logging that seamlessly integrates with modern log management platforms while providing maximum value for cybersecurity operations.
Release date: 13.05.2025
In this release, you’ll find updates that enhance how you manage lookups, assign risk scores, and replay archived data. Here’s a quick overview of what’s new in version v25.15 and why it matters for your security operations.