aws-samples siem-on-amazon-opensearch-service issues

aws-samples / siem-on-amazon-opensearch-service

A solution for collecting, correlating and visualizing multiple types of logs to help investigate security incidents.

MIT No Attribution

556 stars 185 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Inspector2 Log ingesting fail due to timestamp formatting change

#457 lafayette-soc opened 2 weeks ago
0
fix documents

#456 koshikawa opened 3 weeks ago
0
Amplify Support

#455 rsi-mrobinson opened 1 month ago
0
Add metadata to Amazon VPC flow logs

#454 teppeikamohara opened 1 month ago
0
Bump requests from 2.31.0 to 2.32.0 in /source/lambda/es_loader

#453 dependabot[bot] opened 1 month ago
0
The amount of logs inserted in opensearch are too large

#452 ripperi8u opened 1 month ago
2
fix: Adjust SQS visibility timeout to appropriate value

#451 raihalea opened 2 months ago
0
Need Guidance on Ingesting Fortigate Firewall Logs from S3 to OpenSearch

#450 zahirktk78 opened 2 months ago
0
[ERROR] KeyError: 'userIdentity.type'

#449 jamaaljackson opened 2 months ago
0
No Action Required to "Security Lake update to latest parquet version"

#448 nakajiak opened 2 months ago
0
Object mapping for [requestParameters.map.groupBy] tried to parse field [groupBy] as object, but found a concrete value

#447 FerFabbiano opened 2 months ago
1
object mapping for [requestParameters.overrides.containerOverrides.environment] tried to parse field [environment] as object

#446 duffybelfield opened 2 months ago
0
Unable to integrate Control Tower in GovCloud environment

#445 nakajiak closed 3 months ago
0
An error occurred (ValidationException) when calling the UpdateDomainConfig operation

#444 nakajiak closed 3 months ago
0
Support a method to directly ingest logs from the S3 bucket of Security Lake

#443 valmet083 closed 2 months ago
0
update pandas sdk to v3.7.1

#442 nakajiak closed 3 months ago
0
Support AWS Canada (Calgary) Region

#441 nakajiak closed 3 months ago
0
Runtime.ImportModuleError: Unable to import module 'lambda_function': cannot import name 'is_s3express_bucket' from 'botocore.utils'

#440 nakajiak closed 3 months ago
0
Cannot import OpenSearch Dashboard's configuration files from dashboard.ndjson

#439 uniuuu opened 3 months ago
5
Slow es-loader with warning

#438 duffybelfield opened 3 months ago
1
Support for Security lake with OCSF v1.1.0 and Apache Iceberg

#437 nakajiak opened 4 months ago
0
Error loading WAF log to OpenSearch: "mapper_parsing_exception"

#436 kynging opened 4 months ago
0
Issues Ingesting VPC Flow Logs into OpenSearch SIEM with AWS Secure Environment Accelerator

#435 zahirktk78 closed 4 months ago
0
Update FAQ to include: How can I configure the OpenSearch SIEM solution to ingest logs from a custom S3 bucket?

#434 sunilabi-asea2 closed 3 months ago
0
Create Detection Rule with Custom Log Type

#433 khairulhabibataws closed 4 months ago
1
Support for Opensearch 2.11

#432 stevec1980 closed 3 months ago
3
Cloudtrailのログを取り込む際、HIDDEN_DUE_TO_SECURITY_REASONSという文字列で秘匿化処理がかかったフィールドが混じったログの取り込みが失敗する

#431 tmat-s closed 6 months ago
1
CloudTrail load: Error on requestParameters.overrides.containerOverrides.environment due to varied type

#430 kkumler opened 6 months ago
1
Deploy with VPC endpoint

#429 rom1spi opened 7 months ago
1
fix: allow multiple events in a cwl event

#428 alemairebe opened 8 months ago
1
Change Lambda runtime from Python 3.8/3.9 to Python 3.11

#427 nakajiak closed 8 months ago
0
Parsing error for source port in linux log

#426 nakajiak closed 8 months ago
0
Log exporter for PostgreSQL

#425 nakajiak closed 8 months ago
0
Enhance error handling for SQS

#424 nakajiak closed 8 months ago
0
Enriching x-forwarded-for field doesn't work in CloudFront Logs

#423 yoshiyama3 opened 8 months ago
0
lambda es-loader datetime.fromisoformat does not work with most ISO strings

#422 PascalArevalo closed 8 months ago
4
fix: replace datetime.fromisoformat with dateutil parser

#421 PascalArevalo closed 8 months ago
0
update pandas sdk to v3.4.0

#420 nakajiak closed 8 months ago
0
enhance index alias logic and delete unnecessary indices

#419 nakajiak closed 8 months ago
0
Bump urllib3 from 1.26.17 to 1.26.18 in /source/lambda/es_loader

#418 dependabot[bot] closed 8 months ago
0
Bump urllib3 from 1.26.17 to 1.26.18 in /source/lambda/deploy_es

#417 dependabot[bot] closed 8 months ago
0
Need help with showing RDS logs

#416 apseftis86 closed 8 months ago
4
Invalid regex pattern of alb

#415 mrobinson1022 closed 7 months ago
7
Open VPN Logs

#414 redxking opened 9 months ago
1
[question] Is it possible to monitor more than one S3 log bucket?

#413 4sm-ops opened 9 months ago
1
AWS Cloudtrail parsing failure

#412 alemairebe closed 9 months ago
6
Bump urllib3 from 1.26.11 to 1.26.17 in /source/lambda/es_loader

#411 dependabot[bot] closed 9 months ago
0
Bump urllib3 from 1.26.11 to 1.26.17 in /source/lambda/deploy_es

#410 dependabot[bot] closed 9 months ago
0
Support OpenSearch 2.9

#409 nakajiak closed 9 months ago
0
support for nginx web server

#408 nakajiak closed 9 months ago
0