Product Manager, Alert Logic
Data collected from your environment by Alert Logic can be analyzed, saved, and shared within the Alert Logic console. Most collected data, such as log messages and network IDS data, can be viewed ...
Structured logging uses the Key-Value (KV) format for several reasons, including easier parsing, classification, correlation, and conversion. Many systems use KV formatting for one or many of these...
An alternate form of this query can be used to aggregate results over a short period and collect results as a matching set. Queries like this will alert in near real-time only general a fixed numb...
One common use for the Alert Logic Search function—which you can utilize in the Alert Logic console at (navigation menu) > Investigate > Search > Search—is generating an alert when you receive log...
When using the Alert Logic® console to search for log messages or other data on the Search page, you may receive a message similar to the following when submitting a query: This search will exceed...
This is the product owner for the CLI tools — please let me know if you have any thoughts or feedback. I'm glad the CLI tools are helping you. We use them extensively inside Alert Logic and will co...
It sounds like you're interested in a few different workflows: 1. Being able to reflect GuardDuty archival status in Alert Logic: when you archive a finding, the associated incident in the Alert Lo...
Hi James — I have questions! What kind of sync functionality would help you here? For instance, do you archive GuardDuty findings in the AWS GuardDuty console to manage your workflow there? If so, ...