This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Google SecOps/Chronicle Parser Development - Learning Material

Posted on 08-06-2024 01:06 AM
SilasRamsbottom
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

 

Hi Everyone,

I am just starting with Google SecOps/Chronicle and find creating custom/new parsers interesting. I was wondering if there is a course or clear documentation on how to get started with writing parsers and how to create an efficient one.

Solved Solved
1 5 1,198
Topic Labels
Jump to Solution
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
dnehoda
Staff
Reply posted on --/--/---- --:-- AM

Hi Silas.  

Hereโ€™s some content related to syntax 

https://cloud.google.com/chronicle/docs/reference/parser-syntax

Thereโ€™s also a great piece here by Chris from our org. 


https://medium.com/@thatsiemguy/understanding-chronicle-parsers-with-visualization-4ff79f674323

 

View solution in original post

Jump to Solution
5 REPLIES 5
Top Solution Authors
View all