Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on Log Management, Log Analytics and related technologies.

graylog

Red Team Tools Detection and Alerting

Dec 16, 2020 By Nick Carstensen In Graylog

The FireEye breach on Dec 8, 2020, was executed by a “nation with top-tier offensive capabilities.” These hackers got a hold of FireEye’s own toolkit, which they can use to mount new attacks globally. What does this mean for you? Mandiant is a leading Red Team/Penetration Testing company with a highly sophisticated toolkit, called the "Red Team tools." These are digital tools that replicate some of the best hacking tools in the world.

Read Post
splunk

AWS Well-Architected Workload Recommendations in Splunk

Dec 16, 2020 By Skyler Taylor In Splunk

The Well-Architected Tool is a new AWS service that compares the state of your workloads with AWS architectural best practices. Splunking your workload state and improvement recommendations will give you better insights into your applications as well as best practices to follow along your cloud journey. The Well-Architected integration in Grand Central will give you workload insights broken down by the following 5 pillars.

Read Post
graylog

SUNBURST Backdoor: What to look for in your logs now - Interview with an incident responder

Dec 15, 2020 By Lennart Koopmann In Graylog

Yesterday, FireEye published a report about a global intrusion campaign that utilized a backdoor planted in SolarWinds Orion. Attackers gained access to the download servers of Orion. They managed to infect signed installers downloaded by Orion users who had all reason to believe that the packages are safe and had not been tampered with. With this information out in the world, teams are scrambling to investigate if their environments are affected by this breach.

Read Post

Secure Your Cloud Transformation with Continuous Intelligence

Dec 15, 2020 By Sumo Logic In Sumo Logic
CrowdStrike and Sumo Logic work together to identify security threats and defend against IOCs in a hybrid environment. Customers gain knowledge on adversaries which may be targeting their assets and organisation via strategic, operational and technical reporting and alerts. During this session, we’ll hear from Australian private health provider, NIB, on how Sumo Logic and CrowdStrike have worked together to help NIB secure its digital transformation and cloud environment.
View Video
sematext

Node.js Logging Made Easy: A Tutorial on Just About Everything You Need to Know

Dec 14, 2020 By Adnan Rahić In Sematext

Building SaaS products is hard. Making customers happy is even harder. I should know, I’ve built a start-up that failed! But, not everything is that bad. I learned a lot. Now I maintain a few open-source Node.js projects at Sematext. It’s an observability SaaS. I joined to help make the log management features as good as they can be. If you’ve never heard that term before, my co-worker wrote a great introductory explanation of what Log Management is right here.

Read Post

Effective troubleshooting with Grafana Loki - query basics

Dec 14, 2020 By Grafana In Grafana
Loki doesn't index your logs, and that is a very different approach than popular full-text search engines like Elasticsearch or Solr That sounds like a huge constraint. How can you do powerful searches if you don't index the log lines? After this video, you now know how to use Loki's "filter" capability for forensic troubleshooting. Happy searching!
View Video

Alerts to answers: guided root cause exploration for AWS apps (Snoop)

Dec 14, 2020 By Sumo Logic In Sumo Logic
Troubleshooting incidents in a modern AWS app is challenging given the diversity of AWS services in use and the dependencies between them. This customer session will lead AWS infra/DevOps engineers and SREs through a root cause exploration methodology and best practices that will reduce time to resolution.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.