A true SIEM product should be chosen in order to have real time correlation of the gathered logs (or even network flows with some of the vendors). You can start with the Gartner suggested visionaries and leaders, these are proven SIEM vendors that all have free trial of…