Attending RSAC 2024? Join us at the upcoming Google Security Operations workshop, where we'll do a deep dive i...
We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
April 26, 2024 The feed management feature is now enhanced to include the following: Feed names: You can assig...
HI everyoneIs there any chance that the webhook feed will be restored?Roberto
We are looking to provide an MSSP type of service and build an XDR service, currently looking to explore how d...
Hi,I want to ingest 2 different types of logs from GCP to Chronicle SIEM.1) executed commands on GCP projects ...
In the event a forwarder crashed, let's say 24-48 hours of downtime.How can we recover the events that were me...
Hello everyone, my windows servers are sending DNS debug logs and NPS debug logs from the corresponding files,...
Hi everyone,A customer is requiring a certificate of sanitization as per NIST SP 800-88 guidelines. I've done ...
Hi,is there any API endpoint to manage alerts? We'd like to be able to close alerts from scripting and externa...
Hello,Can I forward all alerts from Chronicle to my on-premises SIEM QRadar?Thank you
Why we are getting the output in the below format when we validate the sample log with parser using cbn-tool/c...
Hello,I'm currently exploring the various dashboard options to distinguish between logging hosts and non-loggi...
how to integrate the Network VPN / SSL VPN for Zscaler .please share any documents if you have.
Hello everyone,I come from years of experience from Qradar where to create a custom parser was almost child's ...
Hi All,How to collect logs of the DNS and DHCP both services are running one server itself OS is Windows.
Hi everyone,Does anyone know how the asset enrichment with the parsers for Windows events is supposed to work?...
Hi everyone,Is there a way to delete a field value by using a parser extension? I want to "move" a value from ...
Hi SIEM Team,Could you please us that we are unable to Collete the Zabbix application logs? The Zabbix applica...
Hi All,How to collect the specific application logs for Windows servers. could you please us.
Hello everyone!I am creating a custom parser for json logs and I need to convert domains_list into principal.u...
Hi,I'm looking to create a parser extension for the default GCP Loadbalancer one, since it currently doesn't p...
Hi All,We are already ingesting logs from Dell EMC PowerStore (with a custom parser), but there is also a requ...
Hi all,My client wants to ingest logs from their Huawei OceanStor Pacific appliances, but there is no datatype...
HI team, I require assistance in developing a custom parser for processing raw logs. Additionally, I seek guid...
Hello,our customer tries to sent files to parser which are bigger than 65000 bytes. Is this a forwarder limita...
Do any of you know when Google Chronicle SIEM was officially released? I cannot find any resources about this.
Has anyone here ingested data to SIEM via a temporary label and then migrated to a new data label? We recently...
Hi all, I'm working on tuning that yaral rules gcp_cloudaudit/gcp_dns_modification.yaral from the github repo....
Hi All,I'm looking for a way to fulfill reporting requirements, potentially through dashboards. I understand t...
Hello,how is the data (UDM and RAW) in the DB encrypted? For example if storing security strings.Thanks for th...