Hi Splunkers,
I will planning entegration splunk on our aws envirement but I m beginner on aws so please could you help me about AWS sourcetype details and let me know which are required for security perspective ? And if u have usescases about security please share with me.
Another great place to find AWS use cases - https://research.splunk.com/ , search AWS you will find already curated security detection details!
---
Srikanth Yarlagadda
Perhaps you could start with this list to get an understanding! - https://docs.splunk.com/Documentation/AddOns/released/AWS/DataTypes
If you are not going to use AWS add-on for ingestion of logs the will be different.
--
Srikanth Yarlagadda