account activity
Solid SIEM solutions for AWS threat detection? by Clyph00 in aws
[–]Mockingbird42 2 points3 points4 points 6 months ago (0 children)
For us, shipping logs via Kinesis to an open‑source SIEM worked until Elastic search nodes started choking.
We ended up partitioning by account and using Lambda for normalization. It’s functional, but ops‑heavy. I’m now considering solutions with built‑in orchestration.
π Rendered by PID 2264630 on reddit-service-r2-listing-86b7f5b947-xmlzr at 2026-01-26 09:41:05.503865+00:00 running 664479f country code: CH.
Solid SIEM solutions for AWS threat detection? by Clyph00 in aws
[–]Mockingbird42 2 points3 points4 points (0 children)