Build with Google Cloud Security MCP Servers
Google Cloud Security announced open source Model Context Protocol (MCP) servers for Google SecOps (SIEM and S...
SecOps SIEM
Have SIEM questions? Connect with other Google Cloud Security experts to discuss best practices, troubleshooting, and the latest updates on Google Cloud's SIEM solutions.
Forum Posts
SecOps API Wrapper SDK for Python
Announcing the release of a simple SecOps API Wrapper SDK: https://pypi.org/project/secops/ now using the SecO...
Community-driven detection content for Google SecOps. Calling all defensive practitioners!
A few members of the Google Cloud Security Community have expressed interest in sharing detection content with...
See if a UDM field contains a substring of another UDM field
Is there any way in Yara-L to check if a UDM field contains a substring of another UDM field? The following ex...
creating customers in chronicle siem
Hi Team, Looking for guidance creating customers in chronicle siem using the api. Can't seem to get it working...
Enterprise insights feature
Hi All, I was wondering if the Demo has the 'Enterprise insights' feature
Dashboard for time between logging and detections
Does anyone have any advice on how you could create a dashboard to see the average amount of time between the ...
Windows event forwarding
@Lokesh_Dachepal If you don't want to use a SIEM product, you can always do Windows event forwarding to get al...
Supported Data Sources
Can someone help me understand the different supported data sources for Chronicle?Thanks in advance.
Non-English characters in logs not rendering in Chronicle?
Windows Event logs from servers configured in a language using non-English character set are not rendering in ...
