linux/system-logs
| Vendor | The Linux Foundation | Parsers | ✓ |
| Author | CrowdStrike | Dashboards | ✓ |
| Version | 0.2.0 | Alerts | ✗ |
| Minimum LogScale Version | 1.40.0 | Actions | ✗ |
| Scheduled Searches | ✗ |
This integration includes a parser that uses Log Collector to ship logs, with queries and sample dashboards for Linux System Logs.
The parser included is capable of parsing both Auditd logs, as well as general system Syslog format files. These can be easily adapted to a custom format if desired. The logs will be ingested with the UTC timezone.
Linux System Logs allow greater visibility into your environment, allowing for traceability, accountability, and security.