issues
search
aws-samples
/
siem-on-amazon-opensearch-service
A solution for collecting, correlating and visualizing multiple types of logs to help investigate security incidents.
MIT No Attribution
567
stars
184
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
EKS Audit Log Collected by Security Lake Not Loaded
#459
yusukex2
opened
1 month ago
0
AWS lambda log investigate
#458
s25arunkumar
opened
1 month ago
0
Inspector2 Log ingesting fail due to timestamp formatting change
#457
lafayette-soc
opened
2 months ago
0
fix documents
#456
koshikawa
closed
1 month ago
0
Amplify Support
#455
rsi-mrobinson
opened
3 months ago
0
Add metadata to Amazon VPC flow logs
#454
teppeikamohara
opened
3 months ago
0
Bump requests from 2.31.0 to 2.32.0 in /source/lambda/es_loader
#453
dependabot[bot]
opened
3 months ago
0
The amount of logs inserted in opensearch are too large
#452
ripperi8u
opened
3 months ago
2
fix: Adjust SQS visibility timeout to appropriate value
#451
raihalea
opened
3 months ago
0
Need Guidance on Ingesting Fortigate Firewall Logs from S3 to OpenSearch
#450
zahirktk78
opened
4 months ago
0
[ERROR] KeyError: 'userIdentity.type'
#449
jamaaljackson
opened
4 months ago
0
No Action Required to "Security Lake update to latest parquet version"
#448
nakajiak
opened
4 months ago
0
Object mapping for [requestParameters.map.groupBy] tried to parse field [groupBy] as object, but found a concrete value
#447
FerFabbiano
opened
4 months ago
1
object mapping for [requestParameters.overrides.containerOverrides.environment] tried to parse field [environment] as object
#446
duffybelfield
opened
4 months ago
0
Unable to integrate Control Tower in GovCloud environment
#445
nakajiak
closed
5 months ago
0
An error occurred (ValidationException) when calling the UpdateDomainConfig operation
#444
nakajiak
closed
5 months ago
0
Support a method to directly ingest logs from the S3 bucket of Security Lake
#443
valmet083
closed
4 months ago
0
update pandas sdk to v3.7.1
#442
nakajiak
closed
5 months ago
0
Support AWS Canada (Calgary) Region
#441
nakajiak
closed
5 months ago
0
Runtime.ImportModuleError: Unable to import module 'lambda_function': cannot import name 'is_s3express_bucket' from 'botocore.utils'
#440
nakajiak
closed
5 months ago
0
Cannot import OpenSearch Dashboard's configuration files from dashboard.ndjson
#439
uniuuu
opened
5 months ago
5
Slow es-loader with warning
#438
duffybelfield
opened
5 months ago
1
Support for Security lake with OCSF v1.1.0 and Apache Iceberg
#437
nakajiak
opened
6 months ago
0
Error loading WAF log to OpenSearch: "mapper_parsing_exception"
#436
kynging
opened
6 months ago
0
Issues Ingesting VPC Flow Logs into OpenSearch SIEM with AWS Secure Environment Accelerator
#435
zahirktk78
closed
6 months ago
0
Update FAQ to include: How can I configure the OpenSearch SIEM solution to ingest logs from a custom S3 bucket?
#434
sunilabi-asea2
closed
5 months ago
0
Create Detection Rule with Custom Log Type
#433
khairulhabibataws
closed
6 months ago
1
Support for Opensearch 2.11
#432
stevec1980
closed
5 months ago
3
Cloudtrailのログを取り込む際、HIDDEN_DUE_TO_SECURITY_REASONSという文字列で秘匿化処理がかかったフィールドが混じったログの取り込みが失敗する
#431
tmat-s
closed
8 months ago
1
CloudTrail load: Error on requestParameters.overrides.containerOverrides.environment due to varied type
#430
kkumler
opened
8 months ago
1
Deploy with VPC endpoint
#429
rom1spi
opened
8 months ago
1
fix: allow multiple events in a cwl event
#428
alemairebe
opened
10 months ago
1
Change Lambda runtime from Python 3.8/3.9 to Python 3.11
#427
nakajiak
closed
10 months ago
0
Parsing error for source port in linux log
#426
nakajiak
closed
10 months ago
0
Log exporter for PostgreSQL
#425
nakajiak
closed
10 months ago
0
Enhance error handling for SQS
#424
nakajiak
closed
10 months ago
0
Enriching x-forwarded-for field doesn't work in CloudFront Logs
#423
yoshiyama3
opened
10 months ago
0
lambda es-loader datetime.fromisoformat does not work with most ISO strings
#422
PascalArevalo
closed
10 months ago
4
fix: replace datetime.fromisoformat with dateutil parser
#421
PascalArevalo
closed
10 months ago
0
update pandas sdk to v3.4.0
#420
nakajiak
closed
10 months ago
0
enhance index alias logic and delete unnecessary indices
#419
nakajiak
closed
10 months ago
0
Bump urllib3 from 1.26.17 to 1.26.18 in /source/lambda/es_loader
#418
dependabot[bot]
closed
10 months ago
0
Bump urllib3 from 1.26.17 to 1.26.18 in /source/lambda/deploy_es
#417
dependabot[bot]
closed
10 months ago
0
Need help with showing RDS logs
#416
apseftis86
closed
10 months ago
4
Invalid regex pattern of alb
#415
mrobinson1022
closed
9 months ago
7
Open VPN Logs
#414
redxking
opened
11 months ago
1
[question] Is it possible to monitor more than one S3 log bucket?
#413
4sm-ops
opened
11 months ago
1
AWS Cloudtrail parsing failure
#412
alemairebe
closed
11 months ago
6
Bump urllib3 from 1.26.11 to 1.26.17 in /source/lambda/es_loader
#411
dependabot[bot]
closed
11 months ago
0
Bump urllib3 from 1.26.11 to 1.26.17 in /source/lambda/deploy_es
#410
dependabot[bot]
closed
11 months ago
0
Next