GCP Security Monitoring App for Splunk

Splunk Community
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

GCP Security Monitoring App for Splunk

GCP Security Monitoring App for Splunk
GCP Security Monitoring app for Splunk analyses GCP platform logs and alerts on specific security related rulesets. GCP Platform logs can be forwarded to Splunk through either: - Splunk Add-on for Google Cloud Platform - Pub/Sub to Splunk Dataflow job - Pub/Sub to Splunk Custom forwarders - https://github.com/manasmbellani/pygcplogs/tree/master/splunk Once platform logs have been forwarded, this application adds custom rules for security monitoring and alerting on these platform logs such as detection of public GCS buckets, service accounts created with excessive permissions. For list of available detections, please see the `Details` tab
Ask a Question View in Splunkbase
0 topics and 0 replies mentioned GCP Security Monitoring App for Splunk in
Latest Topics
No posts to display.
Latest Replies
No posts to display.
Top Topics
No posts to display.
My Topics
No posts to display.