-
3 years, 12 months ago
LTRand wrote a new post
Summary
CrowdStrike creates logs in JSON format and sends 2 different datasets to the same sourcetype; security events from their detection tools and audit events from their management tool. These audit tools […]
-
4 years, 6 months ago
LTRand wrote a new post
Summary:
FireEye produces 2 types of logs: security event logs (the primary function of FireEye), and internal system logs (Logs about the appliance). Most users do not use the internal system logs, or are even […] -
4 years, 6 months ago
LTRand wrote a new post
Summary:
Instead of grabbing data from all time, using the dbinspect command will allow administrators to quickly determine how big an index is. There are additional fields in the dbinspect, so explore that to […] -
4 years, 6 months ago
LTRand became a registered member
-
4 years, 6 months ago
LTRand became a registered member