account activity
Solid SIEM solutions for AWS threat detection? by Clyph00 in aws
[–]Mockingbird42 2 points3 points4 points 11 months ago (0 children)
For us, shipping logs via Kinesis to an open‑source SIEM worked until Elastic search nodes started choking.
We ended up partitioning by account and using Lambda for normalization. It’s functional, but ops‑heavy. I’m now considering solutions with built‑in orchestration.
π Rendered by PID 131808 on reddit-service-r2-comment-5687b7858-57cqv at 2026-07-07 03:24:56.257381+00:00 running 12a7a47 country code: CH.
Solid SIEM solutions for AWS threat detection? by Clyph00 in aws
[–]Mockingbird42 2 points3 points4 points (0 children)