At the heart of any SIEM system is log data. A lot of it. Whether from servers, firewalls, databases, or network routers — logs provide analysts with the raw material for gaining insight into events taking place in an IT environment.
The AWS marketplace gives users access to a large variety of SaaS and API products that can be easily found, subscribed to and used. One of the biggest advantages for users is the ability to benefit from an easier procurement and payment process — users can use their existing paying terms with AWS, and unify billing across all the AWS services they are consuming, including those offered in the marketplace. Logz.io is now available on the AWS SaaS Marketplace.
Following our comprehensive introduction to SIEM systems, we looked at the available open source SIEM platforms. In this third article in our SIEM series, we review five of the most popular commercial offerings in this space. We evaluate them by looking at their intended audience and market segment, deployment model, SIEM features (threat intelligence, reporting, etc.), and each solution’s pros and cons.
BOSTON and TEL AVIV, June 13, 2018 — Logz.io, the leading provider of AI-powered log analytics, releases a specialized Docker Logging Plugin, enabling users to easily ship container logs to Logz.io. The Docker Logging Plugin was created to relieve many of the common issues developers experience when shipping container logs such as complex configuration, accidental pausing of container shipments, and potential loss of data.
This article explores integrating Google Pub/Sub with the world’s most popular open source log analysis platform — the ELK Stack, for deeper analysis and investigation.
We live in a world of big data, where even small-sized IT environments are generating vast amounts of data. Once an organization has figured out how to tap into the various data sources generating the data, and the method for collecting, processing and storing it, the next step is analysis.
Once you have your Elasticsearch running, you’ll likely eventually find that performance starts to suffer over time. This can be due to a variety of factors, including changes in the way you’re using your cluster to how much and what types of data are being sent in. In order to maintain your cluster, you’ll need to set up monitors to alert you to any warning signs so that you can proactively handle available maintenance windows.
We are happy to inform our users that a new Docker logging plugin is available on the Docker Store! Using this plugin, users can easily ship container logs directly to Logz.io, and enjoy the following benefits.
In the container world of today, two words rule in bliss — Docker and Kubernetes. Two extremely popular platforms used for managing containers that for a beginner at least, may also seem to be competing technologies.