Logz.io Security Analytics combines the ELK stack with advanced security analytics tools to help you identify and remediate threats to your system. With Security Analytics, you can identify potential indicators of compromise by correlating your Logz.io data with lists of known threats.
- The first thing you see when you sign in to your security account. The summary dashboard shows the last 24 hours of events that Logz.io found in your log data.
- Using publicly available threat feeds, this screen shows the potential threats from known bad actors on the internet.
- Use Kibana to drill down into your logs, helping you better understand specific events and threats.
- Security rules
- This page contains preconfigured security rules. When security rules are triggered, you’ll see the results on the Summary and Threats dashboards. You can also create your own custom rules.
To see your Security Analytics account, click the Logz.io logo (upper left corner), and then click Security.