New Google Cloud Security Customer Success Services Available!
We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
•
Posted
We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
Does Google Secops have a VPAT (Voluntary Product Accessibility Template) ?
Recently trying stats in search (Preview) but it seems not working on our end. Tried the sample in documentati...
How Chronicle SIEM connecting with AWS Cloud Trail via EventBridge Rule . can anyone explain this. or suggest ...
Hi All,I just want to know is there any feasibility to merge similar alerts into one single alert that matches...
Hi, I would like to know to if there is way to append a reference list without getting the content of the list...
Missed the original announcement? No worries, I've got you covered! Google Cloud dropped some seriously awesom...
what is the correct log type OR ingestion label to use in the chronicle forwarder configuration for the follow...
I've set up a AWS CloudWatch feed to ingest EKS audit logs from an S3 bucket. Initially it fetches one file wi...
Hi #community,Is there any option to throttle or prevent a rule with same criteria triggers for x period of ti...
Hello,I struggle with the outcome section for a rule i'm working on at the moment. I looked in the documentati...
I am reaching out in relation to the following metrics post:https://www.googlecloudcommunity.com/gc/Community-...
Hi,Would like to ask for your help on how can I parse this nested json in a udm{"type": "POTENTIAL_RISKY_ACTIV...
I am writing parser extension and want to update security_result.description field.if [@computed][message] != ...
April 26, 2024 The feed management feature is now enhanced to include the following: Feed names: You can assig...
April 25, 2024 Chronicle Security Operations (Chronicle SecOps) has been rebranded to Google Security Operatio...
Are you hungry for more Google Security content? Craving a way to easily find those hidden gems of knowledge? ...
HI everyoneIs there any chance that the webhook feed will be restored?Roberto
We are looking to provide an MSSP type of service and build an XDR service, currently looking to explore how d...
I have a situation where I need to advise some clients and users that the default `Unix System` parser will pa...
Hi All,I am very much looking forward to learning more about parsers, but we do not understand how to develop ...
Hi,I want to ingest 2 different types of logs from GCP to Chronicle SIEM.1) executed commands on GCP projects ...
In the event a forwarder crashed, let's say 24-48 hours of downtime.How can we recover the events that were me...
Hey all,I am trying to connect our Chrome browser with Chronicle using the native workspace connector and Chro...
We are getting below error while accessing Chronicle console. Any idea why this error is coming ?SSO login was...
Hello,I'm setting up asset enrichment through the ENTITY_CONTEXT. I have configured time interval as below:By ...
Hi guys,I am creating a yara rule to find the lateral movement of the users. But i am stuck at assigning risk ...
Hi!I want to create a rule that contemplates different clients($udm.metadata.ingestion_labels["customer"]) and...
Good afternoon! I want to ingest Azure Activity Logs into our Chronicle instance. For that, I have found the f...
Hi!I am configuring a feed on Chronicle SIEM to obtain Azure Activity Logs following this guide: Ingest Azure ...
We have a list of ~500k CIDRs previously used as a lookup table in Splunk that we would like to replicate as a...
User | Likes Count |
---|---|
8 | |
6 | |
5 | |
3 | |
3 |