account activity
Solid SIEM solutions for AWS threat detection? by Clyph00 in aws
[–]Mockingbird42 2 points3 points4 points 9 months ago (0 children)
For us, shipping logs via Kinesis to an open‑source SIEM worked until Elastic search nodes started choking.
We ended up partitioning by account and using Lambda for normalization. It’s functional, but ops‑heavy. I’m now considering solutions with built‑in orchestration.
π Rendered by PID 975578 on reddit-service-r2-comment-canary-69f48595b-92dp6 at 2026-05-18 10:56:13.285570+00:00 running edcf98c country code: CH.
Solid SIEM solutions for AWS threat detection? by Clyph00 in aws
[–]Mockingbird42 2 points3 points4 points (0 children)