If you want to export your logs to a storage bucket a few days before your license expires, but:
- You don't need to export every log type (to save on costs),
- You want to write specific logs to different buckets,
- And you want to automate this process daily or weekly...
You can use the SOAR integration I developed.
It utilizes the Data Export API and Chronicle API (solving the deprecated fetchAvailablelogTypes endpoint issue) to automatically discover active logs and filter them based on your needs.
Here is the integration link: https://www.linkedin.com/posts/samet-ibis_github-samet-ibisgoogle-secops-automated-data-export-activity-7419303376011710464-UJFn?utm_source=share&utm_medium=member_desktop&rcm=ACoAAC12iNwB7yJQgbhqPa99kQoUTR5Z-1qUVp4
This was inspired by @cloudymike's article. Check it out here: https://lnkd.in/d4kcDqEY]
Automated Data Export for Google SecOps ☁️
+5- Bronze 2
Login to the community
Login with SSO
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.