Demo for Elastic's Auditbeat and SIEM
-
Updated
Jun 15, 2021 - HCL
Demo for Elastic's Auditbeat and SIEM
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
Sentinal capabilities implemented
Collecting, monitoring and analyzing audit logs in Yandex Managed Service for Managed Service for Elasticsearch (ELK).
Collecting, monitoring, and analyzing Yandex Cloud audit logs in an external SIEM Splunk.
Deploy ELK platform in Yandex Cloud for analyzing K8s security logs: Audit logs, Policy Engine, Falco.
Export of Kubernetes Audit logs to Yandex Object Storage.
Export of Kubernetes Audit logs to Yandex Data Streams (YDS) or Kinesis Data Streams.
Add a description, image, and links to the siem topic page so that developers can more easily learn about it.
To associate your repository with the siem topic, visit your repo's landing page and select "manage topics."