Hilko Bengen / @hillu@infosec.exchange · Jan 27, 2023 · 5:32 PM UTC

Hilko Bengen / @hillu@infosec.exchange

Hilko Bengen / @hillu@infosec.exchange @_hillu

Jan 27

Just released v0.5.1 of Laurel, the #linux #auditd plugin event post-processing plugin that generates useful, enriched JSON-based audit logs suitable for modern security monitoring setups. github.com/threathunters-io/…

GitHub - threathunters-io/laurel: Transform Linux Audit logs for SIEM usage

Transform Linux Audit logs for SIEM usage. Contribute to threathunters-io/laurel development by creating an account on GitHub.

github.com

100

Michel de CREVOISIER · Jan 27, 2023 · 10:57 PM UTC

Michel de CREVOISIER · Jan 27, 2023 · 10:57 PM UTC

Michel de CREVOISIER @mdecrevoisier

Jan 27

Replying to @_hillu

Great job ! Are you also planning to update your performance.svg map ? Would be great !

Jan 27, 2023 · 10:57 PM UTC

Hilko Bengen / @hillu@infosec.exchange · Jan 27, 2023 · 11:05 PM UTC

Hilko Bengen / @hillu@infosec.exchange @_hillu

Jan 27

Replying to @mdecrevoisier

Hadn't planned to, tbh. Are you interested in anything specific – or just how much performance has degenerated as features were added? ;-)

Michel de CREVOISIER · Jan 30, 2023 · 7:38 PM UTC

Michel de CREVOISIER @mdecrevoisier

Jan 30

I'm planning to shortly mention your tool in a public talk in Q2 this year (CFP not closed yet) and wanted to be sure to have the latest performance set. Otherwise I will simply keep the current one.