My good friend, Sreedhar Ande, who was a guest on the recent Microsoft Security Insights podcast episode and is the author of the fabulous PowerShell script to automating the export of Azure Sentinel data to long-term storage, has come up with another fantastic offering.
Sreedhar has developed and released a data connector for ingesting AWS CloudTrail logs into a Log Analytics workspace.
Check it out here: andedevsecops/AWS-CloudTrail-AzFunc: Azure native Sentinel Data connector to ingest AWS CloudTrail Logs (github.com)
Make sure to read through the readme portion and make sure to follow the supplied installation and post-deployment steps.
=========================
[Want to discuss this further? Hit me up on Twitter or LinkedIn]
[Subscribe to the RSS feed for this blog]
[Subscribe to the Weekly Azure Sentinel Newsletter]
