How to get unix server logs which is hosted in aws
We integrated AWS S3 bucket logs to SIEM using S3universal plugins. If servers logs are pushed to S3 , we can get Linux servers logs to on -premises SIEM ? If it is which parser it will Match . Please someone guide me on this...
Depending on how the logs are written into the S3 bucket, they may or may not match our existing parsers. Have you been able to pull the logs into Netwitness yet?