Security Monitoring & Logging
Tools for monitoring security events and managing security logs.

Datadog Cloud Security Management
A solution for managing cloud security, focusing on misconfigurations and real-time threat detection.

AWS Centralized Logging
A solution for managing and analyzing logs from multiple AWS accounts and regions in a centralized manner using Amazon OpenSearch Service.

FireMon Cloud Defense
A cloud security solution that provides real-time monitoring, compliance tracking, and threat detection across cloud environments.

cwe-monitor-secgrp
This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function flags rules that violate a preconfigured policy.

VPC Flow Logs
VPC Flow Logs provide visibility into network traffic within Amazon VPCs, essential for diagnosing security issues and monitoring network activity.

OSSEC
An open-source host-based intrusion detection system (HIDS) that provides log monitoring, file integrity checking, and active response capabilities.

Splunk Cloud Platform
A centralized, scalable, and highly secure platform for data ingestion, analysis, and action in cloud-driven environments.

AWS Well-Architected Security Labs
Hands-on guidance for implementing security best practices in AWS workloads.

Logz.io Cloud SIEM
Logz.io Cloud SIEM is a security information and event management solution that centralizes and analyzes security logs across diverse environments.

Gravwell
Gravwell is an enterprise data fusion and analytics platform designed to manage and analyze vast amounts of log and security data.

Google Cloud Audit Logs
Google Cloud Audit Logs provide tracking and auditing of activities within Google Cloud resources, ensuring transparency and security.

Wazuh
Wazuh is a unified security monitoring and threat response platform that integrates Extended Detection and Response (XDR) and Security Information and Event Management (SIEM) capabilities.