Security Monitoring & Logging
Tools for monitoring security events and managing security logs.
VPC Flow Logs
VPC Flow Logs provide visibility into network traffic within Amazon VPCs, essential for diagnosing security issues and monitoring network activity.
AWS Centralized Logging
A solution for managing and analyzing logs from multiple AWS accounts and regions in a centralized manner using Amazon OpenSearch Service.
Splunk Cloud Platform
A centralized, scalable, and highly secure platform for data ingestion, analysis, and action in cloud-driven environments.
cwe-monitor-secgrp
This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function flags rules that violate a preconfigured policy.
Google Cloud Audit Logs
Google Cloud Audit Logs provide tracking and auditing of activities within Google Cloud resources, ensuring transparency and security.
OSSEC
An open-source host-based intrusion detection system (HIDS) that provides log monitoring, file integrity checking, and active response capabilities.
AWS CloudTrail
Enables governance, compliance, and operational auditing of your AWS account.
AWS Well-Architected Security Labs
Hands-on guidance for implementing security best practices in AWS workloads.
CloudCheckr
CloudCheckr provides a cloud management platform for security and compliance in large-scale cloud environments.
Gravwell
Gravwell is an enterprise data fusion and analytics platform designed to manage and analyze vast amounts of log and security data.
Google Cloud Operations
A suite of observability tools for monitoring and troubleshooting distributed cloud deployments.
Wazuh
Wazuh is a unified security monitoring and threat response platform that integrates Extended Detection and Response (XDR) and Security Information and Event Management (SIEM) capabilities.