New Google Cloud Security Customer Success Services Available!
We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
•
Posted
We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
How can we integrate Microsoft Defender for O365 with Chronicle SIEM ?Is it using Microsoft Graph Alert (Third...
Hi Community,Did anyone try to ingest a completely custom log data to Chronicle SIEM?I mean log data which doe...
Hi Team,Could anyone please provide the complete documentation of the latest update Webhook integration.Thank ...
I am reaching out in relation to the group function:https://cloud.google.com/chronicle/docs/detection/yara-l-2...
HiWithin the Kubernetes Node parser, I am trying to split the textPayload into separate fields. The textPayloa...
Product documentation is fantastic when you need guidance on configuring new features. But with a product as c...
Hello,If I understand correctly you currently cannot use UDM search to look at entity data directly? For examp...
Hello Team,Today we faced an issue, where an alert for Impossible Travel Sucessfull was triggered where the co...
I am starting recently on Chronicle; I have created a new project and enabled a Chronicle API, but the next st...
FOrtigate already started but nothing happenedObject settingsAm using the last version of EVE-NG Community edi...
Hi everyone, Yesterday I noticed that there could be a problem with our SIEM. I'll give you an example:In cura...
We are in the process of integrating Oracle Cloud with Google Chronicle. Please share the possible methods for...
Hi everyone. Recently I'm writing some detection rules in YARA-L for my company. I have a rule that simply mat...
Dear Community,Did anyone manage to successfully transform or parse Windows Event Logs (System, Security) that...
Hello All,We are trying to ingest logs into chronicle via API, during which 403 permission error appears.Do we...
Hi Gurus,I am new to Chronicle SIEM, I can get alerts with ListDetections APIs(https://cloud.google.com/chroni...
I'm trying to get a first_seen_time for MAC address assets in a rule, but finding that a majority of the deriv...
Hello!I would like to know if someone has sent to Chronicle the Aruba Central logs.If so, how was it done and ...
Hi all, I'm in process of ingesting Office 365 feed into chronicle SIEM. I would like to know if there is guid...
I am reaching out in relation to:https://www.googlecloudcommunity.com/gc/Community-Blog/New-to-Google-SecOps-U...
Does Google Secops have a VPAT (Voluntary Product Accessibility Template) ?
Hi,I have been struggling to find the right approach to ingest 1password audit events into Chronicle SIEM. Upo...
Hi Team, While parsing UDM Entity and UDM Event for under the same parser, I got following error. generic::inv...
Recently trying stats in search (Preview) but it seems not working on our end. Tried the sample in documentati...
How Chronicle SIEM connecting with AWS Cloud Trail via EventBridge Rule . can anyone explain this. or suggest ...
Hi All,I just want to know is there any feasibility to merge similar alerts into one single alert that matches...
Hi, I would like to know to if there is way to append a reference list without getting the content of the list...
Missed the original announcement? No worries, I've got you covered! Google Cloud dropped some seriously awesom...
what is the correct log type OR ingestion label to use in the chronicle forwarder configuration for the follow...
I've set up a AWS CloudWatch feed to ingest EKS audit logs from an S3 bucket. Initially it fetches one file wi...
User | Likes Count |
---|---|
7 | |
6 | |
6 | |
4 | |
4 |