Nov 21, 2025 · 7 min read · The alert goes off at 2:17 p.m. You count yourself lucky that this one’s in the afternoon, not morning. You drop what you’re doing, open the console, and start digging in. Oh, a significant spike in outbound traffic from a Kubernetes node. A privileg...
Join discussion
Sep 26, 2025 · 5 min read · As a cybersecurity enthusiast and Security Analyst, I’ve always believed that incident response (IR) is not just about reacting—it’s about detecting, understanding, and acting fast. Recently, I explored how Sumo Logic, a cloud-native SIEM and observa...
Join discussion
Jul 30, 2025 · 7 min read · As software continues to eat the world, and AI becomes a force multiplier for attackers, those of us tasked with defending our systems have to be more focused, deliberate, and proactive in our approaches. We have to rise up to meet this onslaught of ...
Join discussion
Jun 27, 2025 · 7 min read · Since I started in technology in 1992 (over three decades ago!), I’ve encountered countless scenarios where I was expected to “do more with less.” Whether it meant delivering more with fewer team members or working within constrained hardware resourc...
Join discussion
May 2, 2023 · 5 min read · In this article, we'll explore how to create a Script Action in Sumo Logic by writing a simple bash script that pings an IP found on an event log. We'll then use the Sumo Logic UI to configure a Collector to run the script and send the results to its...
Join discussion
Apr 21, 2023 · 3 min read · Sumo Logic is a cloud-based log management and analytics platform that enables organizations to collect, analyze, and visualize their machine data in real-time. One of the key components of Sumo Logic is the Collector, which is responsible for ingest...
Join discussion
Mar 17, 2023 · 6 min read · Introduction Although Sumo Logic doesn't offer a pre-packaged FIM solution, it's now feasible to establish a basic FIM by utilizing Sumo Logic's Script Source feature. With the help of some custom bash scripts, Sumo Logic can monitor file states (inc...
Join discussion
Jan 17, 2023 · 12 min read · In the previous article in this series — The Everything Guide to Data Collection in DevSecOps — we discussed the importance of data collection. In this article, we’ll explore the role of monitoring in observability, especially as it relates to securi...
Join discussion
Sep 28, 2022 · 3 min read · So, you want to start log ingestion with Sumo Logic?First, you need to choose the Collector’s name or source needed to collect logs called Metadata. We can follow the official document about naming Sumo Logic's metadata: The Source Category which is...
Join discussion
Aug 18, 2022 · 2 min read · Application Performance Index (Apdex) is a standardised method for calculating the perceived satisfaction of a user accessing your service. It divides all served requests into three categories: satisfied, tolerating, and frustrated. A user's request ...
Join discussion