For our sixth episode in the series, we are pleased to bring you, Ryan Huber (ryan huber) from Slack on the topic of AuditD. The Signal Sciences’ Lunch and Learn Series is geared for practitioners and every month we feature fast-paced 30 minute episodes to help you learn from leaders in our industry.
About the Topic
Auditd is a very useful feature on the linux kernel. We’ve written a golang-based open source alternative to the userspace auditd daemon that ships with most distros. We use go-audit to help us monitor activity on thousands of hosts. We will discuss using go audit along with a reliable logging pipeline consisting of streamstash, elasticsearch, and elastalert, which we use to collect and process data from thousands of hosts.
Fill out the form and to get registered for Ryan Huber’s webinar on Thursday, September 29th. Can’t make it? Sign up anyway and get a copy of the recording after the webinar!