Security is important to all organizations, but many lack the data analysis capability to determine if they have been compromised. Elastic engineers Monica Sarbu and Tudor Golubenco discuss the need to apply more system intelligence to combat unauthorized access to computer systems, both on premises and in the cloud. Beats are lightweight “shippers” that collect and ship various types of Linux system operational data to Elasticsearch. The company is now developing an alternative solution to auditd that is easier to use and extract data from.
You can watch this video also at the source.