%term

The latest News and Information on Log Management, Log Analytics and related technologies.

Splunk SOAR Playbooks: Crowdstrike Malware Triage

Mar 9, 2021 By Splunk In Splunk

The combination of Crowdstrike and Splunk Phantom together allows for a more smooth operational flow from detecting endpoint security alerts to operationalizing threat intelligence and automatically taking the first few response steps – all in a matter of seconds. In this video, distinguished Phantom engineer Philip Royer will walk you through an out-of-the-box playbook that you can set up in Phantom to triage malware detections from Crowdstrike and automate a variety of responses based on an informed decision by an analyst.

View Video

Splunk

Read more about Splunk SOAR Playbooks: Crowdstrike Malware Triage

Platform Correlation Demo

Mar 9, 2021 By logz.io In logz.io

View Video

logz.io

Read more about Platform Correlation Demo

A closer look at the admin API and plugin for centralized tenant adminstration and control in Grafana Enterprise Logs

Mar 9, 2021 By Matt Mendick In Grafana

To follow up on our introduction of Grafana Enterprise Logs, the latest addition to the Grafana Enterprise Stack, let’s dig into one of the key features: the admin API and admin plugin. Grafana Loki, Grafana Labs’ log aggregation project, provides the underpinnings of Grafana Enterprise Logs (GEL).

Read Post

Grafana

Read more about A closer look at the admin API and plugin for centralized tenant adminstration and control in Grafana Enterprise Logs

Pinpointing a Memory Leak For an Application Running on DigitalOcean

Mar 9, 2021 By Loggly Team In SolarWinds

It can be difficult to track down memory leaks, especially when deploying apps on cloud-based application services. Often teams are left with restarting their apps as the only—and less than ideal—recourse to get them back up and running. So what do you do when your cloud-based app springs a memory leak, and how do you pinpoint the cause? In this article, we’ll create a Java app designed to purposely leak memory and deploy it to DigitalOcean.

Read Post

SolarWinds

Read more about Pinpointing a Memory Leak For an Application Running on DigitalOcean

Detecting threats in AWS Cloudtrail logs using machine learning

Mar 9, 2021 By Craig Chamberlain In Elastic

Cloud API logs are a significant blind spot for many organizations and often factor into large-scale, publicly announced data breaches. They pose several challenges to security teams: For all of these reasons, cloud API logs are resistant to conventional threat detection and hunting techniques.

Read Post

Elastic

Read more about Detecting threats in AWS Cloudtrail logs using machine learning

Forrester TEI study: Sumo Logic's Cloud SIEM delivers 166 percent ROI over 3 years and a payback of less than 3 months

Mar 9, 2021 By Girish Bhat In Sumo Logic

We are seeing a renewed focus on accelerating digital transformation projects across business ecosystems and workflows within our customer base. These projects are enabling key business outcomes and this organizational transformation has given security and IT leaders the catalyst and opportunity to modernize security operations while eliminating on-premises debt.

Read Post

Sumo Logic

Read more about Forrester TEI study: Sumo Logic's Cloud SIEM delivers 166 percent ROI over 3 years and a payback of less than 3 months

Sumo Logic Continues to expand Public Sector Footprint

Mar 9, 2021 By Doug Natal In Sumo Logic

In a recent press release entitled ‘Sumo Logic Achieves FedRAMP Moderate Authorization’, dated Feb 2, 2021, the pioneer in continuous intelligence announced its Continuous Intelligence Platform™ has achieved Federal Risk and Authorization Management Program (FedRAMP™) Authorization at a Moderate impact level enabling the company to help public sector organizations get real-time insights into their complex on-premises and cloud environments.

Read Post

Sumo Logic

Read more about Sumo Logic Continues to expand Public Sector Footprint

Logging in Ruby with Logger and Lograge

Mar 8, 2021 By Diogo Souza In Honeybadger

Logging is tricky. You want logs to include enough detail to be useful, but not so much that you're drowning in noise - or violating regulations like GDPR. In this article, Diogo Souza introduces us to Ruby's logging system and the LogRage gem. He shows us how to create custom logs, output the logs in formats like JSON, and reduce the verbosity of default Rails logs.

Read Post

Honeybadger

Read more about Logging in Ruby with Logger and Lograge

Laravel Monolog Handler for Logflare

Mar 7, 2021 By Monitive In Monitive

For our API, we’ve been happily using NewRelic’s monolog enricher for a while, which sends our application logs to NewRelic at the end of each request, making it light and fast for our system not to be bothered by it. Until it stopped working with the upgrade to Composer 2, and they knew about it for several months and still didn’t do a single thing to fix it. So I decided to move to Logflare. Logflare is a fast, light, scalable, and powerful logging aggregator.

Read Post

Monitive

Read more about Laravel Monolog Handler for Logflare

Best practices for monitoring Microsoft Azure platform logs

Mar 5, 2021 By Justin Massey In Datadog

Microsoft Azure provides a suite of cloud computing services that allow organizations across every industry to deploy, manage, and monitor full-scale web applications. As you expand your Azure-based applications, securing the full scope of your cloud resources becomes an increasingly complex task. Azure platform logs record the who, what, when, and where of all user-performed and service account activity within your Azure environment.

Read Post