We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
Hi all,As far as I know, it is possible to use Chronicle SIEM in multi-tenant environments, and using labels y...
Is it possible to use Pub/Sub push to forward logs from an unbounded GCP project to Chronicle SIEM?The pub/sub...
Hello! I'm working on a YARA-L detection project and need some guidance. I'm trying to create a rule to detect...
Hello All,I'm trying to push some logs via Kafka to Chronicle SIEM. Kafka server has been set up and logs are ...
Hi Team,We are unable to see Windows on Docker forwarder logs in Chronicle SIEM.Is there any documenation to f...
Is there a way to run a SIEM search on rules so I can report out rules by name, status, last updated, updated ...
Dear All,Could anyone please give a documentation for how to use "BindPlane OpenTelemetry collector" for syslo...
Dear All,Could anyone please give me the script for ingestion UDM events directly to Chronicle via an Ingestio...
Hi All,I wanted to know if we can embed chronicle SIEM data source to Google Looker so that it helps us to cre...
Limit S3 Ingestion to Particular DateAs per below URL https://cloud.google.com/chronicle/docs/ingestion/ingest...
Hi everyone, I need to migrate a SPL rule to Chronicle, can someone assit how this can be converted to YARA-L?...
Team,I am in the process of deploying Google Chronicle in our organization and following the instructions prov...
Hi How can I detects suspicious links and files that been sending outside of my domain?
Hello,How can I perform a transformation to the data in the environment ?Thank you
Hello,I need to send alerts from one chronicle siem to another.How can I do this?Thank you
Hey security pros! Just catching you up on some exciting Google Cloud Security news that's got me pretty pum...
Hi Team,Could anyone please provide the detailed documentation of the latest update Webhook integration.When I...
Hi,I have been struggling to find the right approach to ingest 1password audit events into Chronicle SIEM. Upo...
Hi Team, While parsing UDM Entity and UDM Event for under the same parser, I got following error. generic::inv...
Hello,If I understand correctly you currently cannot use UDM search to look at entity data directly? For examp...
Hi Team,Could anyone please provide the complete documentation of the latest update Webhook integration.Thank ...
Hey everyone, I got inspired and decided to write up a few of the rules i've written in Yara-L. The examples a...
Hi All,Any one aware that which are the SIEM Tools aprat from Chronicle, any other tools which are more compat...
Hello everyone! I just started working with Chronicle SIEM and I need some help with a YARA-L rule.I need to c...
Does Chronicle have the ability to forward data to other SIEM platforms? Such as Splunk, IBM QRadar.
Hi All,I want access the metrics available in Big Query which are ingested by Chronicle SIEM using Python. Can...
Is it possible to make a Yara-L rule that is detecting off of a specific field in the additional section?I hav...
Is there any way in Yara-L to check if a UDM field contains a substring of another UDM field? The following ex...