Matt Sayler
Product Manager, Alert Logic
Following
0 users
Followed by
0 users
Subscriptions
21
Total activity
30
Last activity
Member since
Activity overview
Latest activity by Matt Sayler-
Matt Sayler created an article,
Share Search Queries and Results in the Alert Logic Console
Data collected from your environment by Alert Logic can be analyzed, saved, and shared within the Alert Logic console. Most collected data, such as log messages and network IDS data, can be viewed ...
-
Matt Sayler created an article,
Parsing for Key-Value Logs in Alert Logic Search
Structured logging uses the Key-Value (KV) format for several reasons, including easier parsing, classification, correlation, and conversion. Many systems use KV formatting for one or many of these...
-
Matt Sayler commented,
An alternate form of this query can be used to aggregate results over a short period and collect results as a matching set. Queries like this will alert in near real-time only general a fixed numb...
-
Matt Sayler created an article,
When should I use a scheduled search or create a correlation alert?
One common use for the Alert Logic Search function—which you can utilize in the Alert Logic console at (navigation menu) > Investigate > Search > Search—is generating an alert when you receive log...
-
Matt Sayler created an article,
Understanding Search Time Frame Limits
When using the Alert Logic® console to search for log messages or other data on the Search page, you may receive a message similar to the following when submitting a query: This search will exceed...
-
Matt Sayler commented,
This is the product owner for the CLI tools — please let me know if you have any thoughts or feedback. I'm glad the CLI tools are helping you. We use them extensively inside Alert Logic and will co...
-
Matt Sayler commented,
It sounds like you're interested in a few different workflows: 1. Being able to reflect GuardDuty archival status in Alert Logic: when you archive a finding, the associated incident in the Alert Lo...
-
Matt Sayler commented,
Official comment Hi James — I have questions! What kind of sync functionality would help you here? For instance, do you archive GuardDuty findings in the AWS GuardDuty console to manage your workflow there? If so, ...