Mirtov Alexey
33d0bd4365
add english
|
3 éve | |
|---|---|---|
| .. | ||
| backup | 3 éve | |
| README.md | 3 éve | |
| README_RU.md | 3 éve | |
| Use-casesANDsearches.docx | 3 éve | |
| Use-casesANDsearches.pdf | 3 éve | |
| Use-casesANDsearches_RU.docx | 3 éve | |
| Use-casesANDsearches_RU.pdf | 3 éve | |
README.md
Use cases and important security events in audit logs
This section contains use cases and important security events on the Yandex.Cloud platform.
Actual Use Cases and important security events are collected in the repository file here.Use-casesANDsearches.pdf
You can ship audit logs from the service Audit Trails in Cloud Logging or in Yandex Managed Service for Elasticsearch (ELK) or in your other own SIEM
Syntax of file
Event analysis expressions are prepared in KQL (ElsticSearch) and CloudLogging to choose
Example Analysis of Events in Cloud Logging
An example of event analysis in ELK
