Tag: threat hunting
-
ClickHouse Blog: Sending Windows Event Logs to ClickHouse With Fluent Bit
Inspired by a Calyptia Nginx blog I continued on the series of Observability with Fluent Bit and ClickHouse. In this guest post with ClickHouse, we explain the basics of Windows Event Logs, learn about detecting security threats with Sysmon events and start collecting, process and insert logs with Fluent Bit into ClickHouse Cloud. As bonus…